Vulnerability identifier: #VU32560

Vulnerability risk: Medium

CVSSv3.1: 4.8 [CVSS:3.1/CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C]

CVE-ID: CVE-2014-2324

CWE-ID: CWE-22

Exploitation vector: Network

Exploits in database: 2

• July 29, 2020
  • lighty-sqlinj-demo (CVE-2014-2323 exploit demonstration) [Github]
  • uc_httpd_exploit (Simple uc httpd exploit made with py3.. this exploit was written from CVE-2014-2324) [Github]

Impact: Information disclosure

Vulnerable software:
lighttpd
Server applications / Web servers

Vendor: lighttpd