CVE-2007-3949 Blast Radius

NONE • CVSS 0mod_access.c in lighttpd 1.4.15 ignores trailing / (slash) characters in the URL, which allows remote attackers to bypass url.access-deny settings.

Is Your Infrastructure Using These Packages?

EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2007-3949.

Start Free Scan →← Back to CVE-2007-3949