Nazgul: >> Nostromo >> 0.6 Security Vulnerabilities
nhttpd in Nostromo before 2.1 is vulnerable to a path traversal that may allow an attacker to execute arbitrary commands on the remote server. The vulnerability occurs when the homedirs option is used.
CVSS Score
9.8
EPSS Score
0.189
Published
2023-01-11
Directory traversal vulnerability in nhttpd (aka Nostromo webserver) before 1.9.4 allows remote attackers to execute arbitrary programs or read arbitrary files via a ..%2f (encoded dot dot slash) in a URI.
CVSS Score
7.5
EPSS Score
0.081
Published
2011-03-16