Unbit Uwsgi
By the Year
In 2024 there have been 0 vulnerabilities in Unbit Uwsgi . Last year Uwsgi had 1 security vulnerability published. Right now, Uwsgi is on track to have less security vulnerabilities in 2024 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2024 | 0 | 0.00 |
| 2023 | 1 | 7.50 |
| 2022 | 0 | 0.00 |
| 2021 | 0 | 0.00 |
| 2020 | 0 | 0.00 |
| 2019 | 0 | 0.00 |
| 2018 | 2 | 8.65 |
It may take a day or so for new Uwsgi vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Unbit Uwsgi Security Vulnerabilities
HTTP Response Smuggling vulnerability in Apache HTTP Server via mod_proxy_uwsgi
CVE-2023-27522
7.5 - High
- March 07, 2023
HTTP Response Smuggling vulnerability in Apache HTTP Server via mod_proxy_uwsgi. This issue affects Apache HTTP Server: from 2.4.30 through 2.4.55. Special characters in the origin response header can truncate/split the response forwarded to the client.
HTTP Request Smuggling
uWSGI before 2.0.17 mishandles a DOCUMENT_ROOT check during use of the --php-docroot option
CVE-2018-7490
7.5 - High
- February 26, 2018
uWSGI before 2.0.17 mishandles a DOCUMENT_ROOT check during use of the --php-docroot option, allowing directory traversal.
Directory traversal
The uwsgi_expand_path function in core/utils.c in Unbit uWSGI through 2.0.15 has a stack-based buffer overflow
CVE-2018-6758
9.8 - Critical
- February 06, 2018
The uwsgi_expand_path function in core/utils.c in Unbit uWSGI through 2.0.15 has a stack-based buffer overflow via a large directory length.
Memory Corruption
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Unbit Uwsgi or by Unbit? Click the Watch button to subscribe.
