CVE-2024-5193 | Ritlabs TinyWeb Server 1.94 Request crlf injection

Posted by Angelo Barbosa | May 22, 2024 | CVE

A vulnerability was found in Ritlabs TinyWeb Server 1.94. It has been classified as problematic. Affected is an unknown function of the component Request Handler. The manipulation with the input %0D%0A leads to crlf injection.

This vulnerability is traded as CVE-2024-5193. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-5193 | Ritlabs TinyWeb Server 1.94 Request crlf injection

Related Posts

CVE-2024-32310 | Tenda F1203 2.0.1.6 fromWizardHandle PPW stack-based overflow

CVE-2024-30162 | Invision Community up to 4.7.16 toolbar.php _toolbar::addPlugin Privilege Escalation

CVE-2024-8216 | nafisulbari/itsourcecode Insurance Management System 1.0 Payment editPayment.php recipt_no access control

CVE-2023-51484 | wp-buy Login as User or Customer Plugin up to 3.8 on WordPress improper authentication