Boa: >> Boa >> 0.94.14 Security Vulnerabilities
Boa Web Server versions 0.94.13 through 0.94.14 fail to validate the correct security constraint on the HEAD HTTP method allowing everyone to bypass the Basic Authorization mechanism.
CVSS Score
5.3
EPSS Score
0.002
Published
2022-12-12
Boa through 0.94.14rc21 allows remote attackers to trigger an out-of-memory (OOM) condition because malloc is mishandled.
CVSS Score
9.8
EPSS Score
0.007
Published
2019-10-11
Boa through 0.94.14rc21 allows remote attackers to trigger a memory leak because of missing calls to the free function.
CVSS Score
7.5
EPSS Score
0.008
Published
2019-10-11