Vulnerability identifier: #VU12158

Vulnerability risk: Low

CVSSv3.1: 4.9 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:F/RL:O/RC:C]

CVE-ID: CVE-2010-2333

CWE-ID: CWE-626

Exploitation vector: Network

Exploits in database: 2

• March 18, 2020
  • LiteSpeed Source Code Disclosure/Download [Metasploit]
  • Litespeed Technologies - Web Server Remote Poison Null Byte Exploit [Exploit-DB]

Impact: Information disclosure

Vulnerable software:
OpenLiteSpeed
Server applications / Web servers

Vendor: LiteSpeed Technologies