Vulnerability Details CVE-2025-55763
Buffer Overflow in the URI parser of CivetWeb 1.14 through 1.16 (latest) allows a remote attacker to achieve remote code execution via a crafted HTTP request. This vulnerability is triggered during request processing and may allow an attacker to corrupt heap memory, potentially leading to denial of service or arbitrary code execution.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.019
EPSS Ranking 82.7%
CVSS Severity
CVSS v3 Score 7.5
Products affected by CVE-2025-55763
-
cpe:2.3:a:civetweb_project:civetweb:1.14
-
cpe:2.3:a:civetweb_project:civetweb:1.15