rpm package
opensuse/cpp-httplib&distro=openSUSE Leap 16.0
pkg:rpm/opensuse/cpp-httplib&distro=openSUSE%20Leap%2016.0
Vulnerabilities (4)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2025-66577 | — | < 0.22.0-160000.3.1 | 0.22.0-160000.3.1 | Dec 5, 2025 | cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to 0.27.0, a vulnerability allows attacker-controlled HTTP headers to influence server-visible metadata, logging, and authorization decisions. An attacker can supply X-Forwarded-For or X-Real- | ||
| CVE-2025-66570 | — | < 0.22.0-160000.3.1 | 0.22.0-160000.3.1 | Dec 5, 2025 | cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to 0.27.0, a vulnerability allows attacker-controlled HTTP headers to influence server-visible metadata, logging, and authorization decisions. An attacker can inject headers named REMOTE_ADDR, | ||
| CVE-2025-53629 | — | < 0.22.0-160000.4.1 | 0.22.0-160000.4.1 | Jul 10, 2025 | cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to 0.23.0, incoming requests using Transfer-Encoding: chunked in the header can allocate memory arbitrarily in the server, potentially leading to its exhaustion. This vulnerability is fixed in | ||
| CVE-2025-53628 | — | < 0.22.0-160000.4.1 | 0.22.0-160000.4.1 | Jul 10, 2025 | cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to 0.20.1, cpp-httplib does not have a limit for a unique line, permitting an attacker to explore this to allocate memory arbitrarily. This vulnerability is fixed in 0.20.1. NOTE: This vulnera |
- CVE-2025-66577Dec 5, 2025affected < 0.22.0-160000.3.1fixed 0.22.0-160000.3.1
cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to 0.27.0, a vulnerability allows attacker-controlled HTTP headers to influence server-visible metadata, logging, and authorization decisions. An attacker can supply X-Forwarded-For or X-Real-
- CVE-2025-66570Dec 5, 2025affected < 0.22.0-160000.3.1fixed 0.22.0-160000.3.1
cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to 0.27.0, a vulnerability allows attacker-controlled HTTP headers to influence server-visible metadata, logging, and authorization decisions. An attacker can inject headers named REMOTE_ADDR,
- CVE-2025-53629Jul 10, 2025affected < 0.22.0-160000.4.1fixed 0.22.0-160000.4.1
cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to 0.23.0, incoming requests using Transfer-Encoding: chunked in the header can allocate memory arbitrarily in the server, potentially leading to its exhaustion. This vulnerability is fixed in
- CVE-2025-53628Jul 10, 2025affected < 0.22.0-160000.4.1fixed 0.22.0-160000.4.1
cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to 0.20.1, cpp-httplib does not have a limit for a unique line, permitting an attacker to explore this to allocate memory arbitrarily. This vulnerability is fixed in 0.20.1. NOTE: This vulnera