Known Vulnerabilities for products from Acme
Listed below are 15 of the newest known vulnerabilities associated with the vendor "Acme".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-40611 json | Not Provided | 2026-04-21 | 2026-04-21 | |
| CVE-2026-40097 json | Not Provided | 2026-04-10 | 2026-04-10 | |
| CVE-2026-5052 json | Not Provided | 2026-04-17 | 2026-04-17 | |
| CVE-2025-31540 json | Not Provided | 2025-03-31 | 2026-04-01 | |
| CVE-2024-0263 json | 7.5 - HIGH | 2024-01-07 | 2024-01-10 | |
| CVE-2018-18778 json | ACME mini_httpd before 1.30 lets remote users read arbitrary files. | 6.5 - MEDIUM | 2018-10-29 | 2018-12-06 |
| CVE-2017-17663 json | The htpasswd implementation of mini_httpd before v1.28 and of thttpd before v2.28 is affected by a buffer overflow that can b... | 9.8 - CRITICAL | 2018-02-06 | 2018-03-13 |
| CVE-2015-1548 json | mini_httpd 1.21 and earlier allows remote attackers to obtain sensitive information from process memory via an HTTP request w... | 5 - MEDIUM | 2015-02-10 | 2016-12-22 |
| CVE-2014-4927 json | Buffer overflow in ACME micro_httpd, as used in D-Link DSL2750U and DSL2740U and NetGear WGR614 and MR-ADSL-DG834 routers all... | 7.8 - HIGH | 2014-07-24 | 2023-04-26 |
| CVE-2013-0348 json | thttpd.c in sthttpd before 2.26.4-r2 and thttpd 2.25b use world-readable permissions for /var/log/thttpd.log, which allows lo... | 2.1 - LOW | 2013-12-13 | 2023-02-13 |
| CVE-2012-5640 json | thttpd has a local DoS vulnerability via specially-crafted .htpasswd files | 5.5 - MEDIUM | 2019-11-25 | 2019-12-04 |
| CVE-2010-1544 json | micro_httpd on the RCA DCM425 cable modem allows remote attackers to cause a denial of service (device reboot) via a long str... | 5 - MEDIUM | 2010-04-26 | 2010-04-27 |
| CVE-2009-4491 json | thttpd 2.25b0 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to mo... | Not Provided | 2010-01-13 | 2026-04-23 |
| CVE-2009-4490 json | mini_httpd 1.19 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to ... | Not Provided | 2010-01-13 | 2026-04-23 |
| CVE-2007-0158 json | thttpd 2007 has buffer underflow. | 9.8 - CRITICAL | 2019-12-27 | 2020-01-08 |
| CVE-2003-0899 json | Buffer overflow in defang in libhttpd.c for thttpd 2.21 to 2.23b1 allows remote attackers to execute arbitrary code via reque... | Not Provided | 2003-11-03 | 2025-04-03 |
| CVE-2001-1496 json | Off-by-one buffer overflow in Basic Authentication in Acme Labs thttpd 1.95 through 2.20 allows remote attackers to cause a d... | Not Provided | 2001-12-31 | 2025-04-03 |
| CVE-2001-0893 json | Acme mini_httpd before 1.16 allows remote attackers to view sensitive files under the document root (such as .htpasswd) via a... | Not Provided | 2001-11-13 | 2025-04-03 |
| CVE-2001-0892 json | Acme Thttpd Secure Webserver before 2.22, with the chroot option enabled, allows remote attackers to view sensitive files und... | Not Provided | 2001-11-13 | 2025-04-03 |
Known software with vulnerabilities from Acme
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Acme | Micro Httpd | - |
| Application | Acme | Mini-httpd | 1.00 |
| Application | Acme | Mini Httpd | 1.21 |
| Application | Acme | Thttpd | - |