Known Vulnerabilities for Boa by Boa
Listed below are 8 of the newest known vulnerabilities associated with "Boa" by "Boa".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2022-45956 json | Boa Web Server versions 0.94.13 through 0.94.14 fail to validate the correct security constraint on the HEAD HTTP method allo... | 5.3 - MEDIUM | 2022-12-12 | 2022-12-15 |
| CVE-2022-44117 json | Boa 0.94.14rc21 is vulnerable to SQL Injection via username. | 9.8 - CRITICAL | 2022-11-23 | 2024-03-14 |
| CVE-2021-33558 json | ** DISPUTED ** Boa 0.94.13 allows remote attackers to obtain sensitive information via a misconfiguration involving backup.ht... | 7.5 - HIGH | 2021-05-27 | 2023-11-07 |
| CVE-2018-21028 json | Boa through 0.94.14rc21 allows remote attackers to trigger a memory leak because of missing calls to the free function. | 7.5 - HIGH | 2019-10-11 | 2019-10-16 |
| CVE-2018-21027 json | Boa through 0.94.14rc21 allows remote attackers to trigger an out-of-memory (OOM) condition because malloc is mishandled. | 9.8 - CRITICAL | 2019-10-11 | 2019-10-17 |
| CVE-2017-9833 json | ** DISPUTED ** /cgi-bin/wapopen in Boa 0.94.14rc21 allows the injection of "../.." using the FILECAMERA variable (sent by GET... | 7.5 - HIGH | 2017-06-24 | 2023-11-07 |
| CVE-2016-9564 json | Buffer overflow in send_redirect() in Boa Webserver 0.92r allows remote attackers to DoS via an HTTP GET request requesting a... | 7.5 - HIGH | 2016-11-30 | 2016-12-03 |
| CVE-2009-4496 json | Not Provided | 2010-01-13 | 2026-04-23 |