VYPR
Vendor

Swoole

Products
1
CVEs
4
Across products
4
Status
Private

Products

1

Recent CVEs

4
  • CVE-2026-24814CriJan 27, 2026
    risk 0.65cvss epss 0.00

    Integer Overflow or Wraparound vulnerability in swoole swoole-src (thirdparty/hiredis modules). This vulnerability is associated with program files sds.C. This issue affects swoole-src: before 6.0.2.

  • CVE-2018-15503HigAug 18, 2018
    risk 0.42cvss 7.5epss 0.02

    The unpack implementation in Swoole version 4.0.4 lacks correct size checks in the deserialization process. An attacker can craft a serialized object to exploit this vulnerability and cause a SEGV.

  • CVE-2020-24275Jul 20, 2023
    risk 0.00cvss epss 0.01

    A HTTP response header injection vulnerability in Swoole v4.5.2 allows attackers to execute arbitrary code via supplying a crafted URL.

  • CVE-2019-15518Aug 23, 2019
    risk 0.00cvss epss 0.02

    Swoole before 4.2.13 allows directory traversal in swPort_http_static_handler.