CVE-2025-3268 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A vulnerability has been found in qinguoyi TinyWebServer up to 1.0 and classified as critical. This vulnerability affects unknown code of the file http/http_con…
Medium CVSS: 6.9

CVE-2025-3268

A vulnerability has been found in qinguoyi TinyWebServer up to 1.0 and classified as critical. This vulnerability affects unknown code of the file http/http_conn.cpp. The manipulation of the argument m_url_real leads to improper authentication. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
Vendor
Qinguoyi
Product
Tinywebserver
CWE
CWE-287
Yayın Tarihi
2025-04-04 21:15:51
Güncelleme
2025-04-23 13:11:34
Source Identifier
cna@vuldb.com
KEV Date Added
-

Kategoriler

CWE-287 Tinywebserver MEDIUM Qinguoyi 2025

Referanslar

https://magnificent-dill-351.notion.site/Improper-Authentication-in-TinyWebServer-1-0-1c9c693918ed80cfa0f5db1a1d03c5e7 https://vuldb.com/?ctiid.303340 https://vuldb.com/?id.303340 https://vuldb.com/?submit.549229 https://magnificent-dill-351.notion.site/Improper-Authentication-in-TinyWebServer-1-0-1c9c693918ed80cfa0f5db1a1d03c5e7