Critical severity9.8NVD Advisory· Published Jan 5, 2024· Updated Jun 17, 2026
CVE-2024-22088
CVE-2024-22088
Description
Lotos WebServer through 0.1.1 (commit 3eb36cc) has a use-after-free in buffer_avail() at buffer.h via a long URI, because realloc is mishandled.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Lotos/Lotos WebServerdescription
Patches
Vulnerability mechanics
References
1- github.com/chendotjs/lotos/issues/7nvdExploitIssue TrackingMitigationVendor Advisory
News mentions
0No linked articles in our index yet.