Acme Acme

  1. Vendors
  2. Acme

Don't miss out!

Thousands of developers use stack.watch to stay informed.
Get an email whenever new security vulnerabilities are reported in any Acme product.

RSS Feeds for Acme security vulnerabilities

Create a CVE RSS feed including security vulnerabilities found in Acme products with stack.watch. Just hit watch, then grab your custom RSS feed url.

Products by Acme Sorted by Most Security Vulnerabilities since 2018

Acme Thttpd5 vulnerabilities

Acme Mini Httpd2 vulnerabilities

Acme Micro Httpd1 vulnerability

Acme Ultra Mini Httpd1 vulnerability

By the Year

In 2026 there have been 0 vulnerabilities in Acme. Acme did not have any published security vulnerabilities last year.




Year Vulnerabilities Average Score
2026 0 0.00
2025 0 0.00
2024 1 7.50
2023 0 0.00
2022 0 0.00
2021 0 0.00
2020 0 0.00
2019 0 0.00
2018 1 0.00

It may take a day or so for new Acme vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Acme Security Vulnerabilities

CVE Date Vulnerability Products
CVE-2024-0263 Jan 07, 2024
ACME Ultra Mini HTTPd 1.21 - HTTP GET DoS via Remote Handler A vulnerability was found in ACME Ultra Mini HTTPd 1.21. It has been classified as problematic. This affects an unknown part of the component HTTP GET Request Handler. The manipulation leads to denial of service. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-249819.
Ultra Mini Httpd
CVE-2018-18778 Oct 29, 2018
ACME mini_httpd before 1.30 lets remote users read arbitrary files. ACME mini_httpd before 1.30 lets remote users read arbitrary files.
Mini Httpd
CVE-2014-4927 Jul 24, 2014
Buffer overflow in ACME micro_httpd, as used in D-Link DSL2750U and DSL2740U and NetGear WGR614 and MR-ADSL-DG834 routers Buffer overflow in ACME micro_httpd, as used in D-Link DSL2750U and DSL2740U and NetGear WGR614 and MR-ADSL-DG834 routers allows remote attackers to cause a denial of service (crash) via a long string in the URI in a GET request.
Micro Httpd
CVE-2013-0348 Dec 13, 2013
thttpd.c in sthttpd before 2.26.4-r2 and thttpd 2.25b use world-readable permissions for /var/log/thttpd.log, which thttpd.c in sthttpd before 2.26.4-r2 and thttpd 2.25b use world-readable permissions for /var/log/thttpd.log, which allows local users to obtain sensitive information by reading the file.
Thttpd
CVE-2009-4491 Jan 13, 2010
thttpd 2.25b0 writes data to a log file without sanitizing non-printable characters, which might thttpd 2.25b0 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to modify a window's title, or possibly execute arbitrary commands or overwrite files, via an HTTP request containing an escape sequence for a terminal emulator.
Thttpd
CVE-2003-0899 Nov 03, 2003
Buffer overflow in defang in libhttpd.c for thttpd 2.21 to 2.23b1 allows remote attackers to execute arbitrary code via requests Buffer overflow in defang in libhttpd.c for thttpd 2.21 to 2.23b1 allows remote attackers to execute arbitrary code via requests that contain '<' or '>' characters, which trigger the overflow when the characters are expanded to "&lt;" and "&gt;" sequences.
Thttpd
CVE-2001-1496 Dec 31, 2001
Off-by-one buffer overflow in Basic Authentication in Acme Labs thttpd 1.95 through 2.20 Off-by-one buffer overflow in Basic Authentication in Acme Labs thttpd 1.95 through 2.20 allows remote attackers to cause a denial of service and possibly execute arbitrary code.
Thttpd
CVE-2001-0892 Nov 13, 2001
Acme Thttpd Secure Webserver before 2.22, with the chroot option enabled Acme Thttpd Secure Webserver before 2.22, with the chroot option enabled, allows remote attackers to view sensitive files under the document root (such as .htpasswd) via a GET request with a trailing /.
Thttpd
CVE-2001-0893 Nov 13, 2001
Acme mini_httpd before 1.16 Acme mini_httpd before 1.16 allows remote attackers to view sensitive files under the document root (such as .htpasswd) via a GET request with a trailing /.
Mini Httpd
Built by Foundeo Inc., with data from the National Vulnerability Database (NVD). Privacy Policy. Use of this site is governed by the Legal Terms
Disclaimer
CONTENT ON THIS WEBSITE IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. Always check with your vendor for the most up to date, and accurate information.