COOEY // HUBcompliance · community · intelligence

Exposures › CVE-2019-16278

CVE-2019-16278

Severity
high · on CISA KEV actively exploited
Source
CISA-KEV · kev
Published
2024-11-07
Reference
https://nvd.nist.gov/vuln/detail/CVE-2019-16278
⚡ RCE ⌖ exploited in the wild shame 65/100 rceexploited-in-wild

Nostromo nhttpd contains a directory traversal vulnerability in the http_verify() function in a non-chrooted nhttpd server allowing for remote code execution.

Players implicated

Nostromo · vendornhttpd · product

Description

Nostromo nhttpd contains a directory traversal vulnerability in the http_verify() function in a non-chrooted nhttpd server allowing for remote code execution.

Affected FedRAMP products 0 in the catalog

No correlated FedRAMP products.