How severe is CVE-2024-34199?

CVE-2024-34199 has a CVSS v3 score of 8.6 (HIGH).

CVE-2024-34199

Name: tinyweb
Author: ritlabs

8.6HIGH

TinyWeb 1.94 and below allows unauthenticated remote attackers to cause a denial of service (Buffer Overflow) when sending excessively large elements in the request line.

Published: 5/14/2024Updated: 1/5/2026

Description

TinyWeb 1.94 and below allows unauthenticated remote attackers to cause a denial of service (Buffer Overflow) when sending excessively large elements in the request line.

AI AnalysisPowered by AI

Affected Products

ritlabstinyweb

References

https://github.com/DMCERTCE/PoC_Tiny_Overflow
Exploit
https://github.com/maximmasiutin/TinyWeb/commit/2584082
https://github.com/maximmasiutin/TinyWeb/commit/d49c3da
https://github.com/DMCERTCE/PoC_Tiny_Overflow
Exploit