Mini Httpd

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:a:acme:mini_httpd:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorAcme (f9a29530-a981-5566-8a38-664c797d62c6)
ProductMini Httpd (3d3610ae-1621-53d2-a42e-39a5e464d9c5)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from purl2cpe mapping

PURL mappings

PURLSourceLast updated
pkg:deb/debian/mini-httpd purl2cpe 2026-06-01 10:12:31.764211
pkg:deb/ubuntu/mini-httpd purl2cpe 2026-06-01 10:12:31.764214
pkg:github/peter-leonov/mini_httpd purl2cpe 2026-06-01 10:12:31.764217

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2017-17663 vulnerable 2026-06-03 14:36:55.683471 Details available
The htpasswd implementation of mini_httpd before v1.28 and of thttpd before v2.28 is affected by a buffer overflow that can be exploited remotely to perform code execution.
Published: 2018-02-06T17:00:00.000Z
Updated: 2024-08-05T20:59:17.603Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2015-1548 vulnerable 2026-06-03 14:34:39.637062 Details available
mini_httpd 1.21 and earlier allows remote attackers to obtain sensitive information from process memory via an HTTP request with a long protocol string, which triggers an incorrect response size calculation and an out-of-bounds read.
Published: 2015-02-10T19:00:00.000Z
Updated: 2024-08-06T04:47:17.170Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2001-0893 vulnerable 2026-06-03 14:26:02.443359 Details available
Acme mini_httpd before 1.16 allows remote attackers to view sensitive files under the document root (such as .htpasswd) via a GET request with a trailing /.
Published: 2002-02-02T05:00:00.000Z
Updated: 2024-08-08T04:37:06.816Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.