Unrated severityNVD Advisory· Published Mar 26, 2026· Updated Mar 26, 2026
Multiple vulnerabilities in Small HTTP server by Smallsrv
CVE-2025-41368
Description
Problem in the Small HTTP Server v3.06.36 service. An authenticated path traversal vulnerability in '/' allows remote users to bypass the intended restrictions of SecurityManager and display any file if they have the appropriate permissions outside the document root configured on the server.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: = 3.06.36
- Range: 3.06.36
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.