VYPR
Vendor

Nostromo

Products
2
CVEs
4
Across products
4
Status
Private

Products

2

Recent CVEs

4
  • CVE-2019-16278KEVOct 14, 2019
    risk 0.23cvss epss 0.99

    Directory Traversal in the function http_verify in nostromo nhttpd through 1.9.6 allows an attacker to achieve remote code execution via a crafted HTTP request.

  • CVE-2019-16279Oct 14, 2019
    risk 0.07cvss epss 0.20

    A memory error in the function SSL_accept in nostromo nhttpd through 1.9.6 allows an attacker to trigger a denial of service via a crafted HTTP request.

  • CVE-2022-48253Jan 11, 2023
    risk 0.03cvss epss 0.03

    nhttpd in Nostromo before 2.1 is vulnerable to a path traversal that may allow an attacker to execute arbitrary commands on the remote server. The vulnerability occurs when the homedirs option is used.

  • CVE-2011-0751Mar 16, 2011
    risk 0.03cvss epss 0.04

    Directory traversal vulnerability in nhttpd (aka Nostromo webserver) before 1.9.4 allows remote attackers to execute arbitrary programs or read arbitrary files via a ..%2f (encoded dot dot slash) in a URI.