VYPR

HTTP Server

by Zeroo

CVEs (3)

  • CVE-2026-23918HigMay 4, 2026
    risk 0.60cvss 8.8epss 0.46

    Double Free and possible RCE vulnerability in Apache HTTP Server with the HTTP/2 protocol. This issue affects Apache HTTP Server: 2.4.66. Users are recommended to upgrade to version 2.4.67, which fixes the issue.

  • CVE-2002-1823Dec 31, 2002
    risk 0.04cvss epss 0.11

    Buffer overflow in the HttpGetRequest function in Zeroo HTTP server 1.5 allows remote attackers to execute arbitrary code via a long HTTP request.

  • CVE-2002-2416Dec 31, 2002
    risk 0.03cvss epss 0.06

    Directory traversal vulnerability in Zeroo web server 1.5 allows remote attackers to read arbitrary files via a .. (dot dot) in a URL GET request.