Critical severity9.1NVD Advisory· Published Oct 9, 2024· Updated Apr 15, 2026
CVE-2023-46586
CVE-2023-46586
Description
cgi.c in weborf .0.17, 0.18, 0.19, and 0.20 (before 1.0) lacks '\0' termination of the path for CGI scripts because strncpy is misused.
Patches
249824204add56f83c3e9ceedVulnerability mechanics
Generated by null/stub on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
4News mentions
0No linked articles in our index yet.