Vulnerability Database

309,136

Total vulnerabilities in the database

CVE-2013-7038

The MHD_http_unescape function in libmicrohttpd before 0.9.32 might allow remote attackers to obtain sensitive information or cause a denial of service (crash) via unspecified vectors that trigger an out-of-bounds read.

Published: Dec 13, 2013
Updated: Nov 9, 2025
CVE: CVE-2013-7038
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 6.4
AV:N/AC:L/Au:N/C:P/I:N/A:P

CWEs:

CWE-119

Affected Software
References

Software	From	Fixed in
gnu / libmicrohttpd	0.9.28	0.9.28.x
gnu / libmicrohttpd	0.9.29	0.9.29.x
gnu / libmicrohttpd	0.9.27	0.9.27.x
gnu / libmicrohttpd	0.9.23	0.9.23.x
gnu / libmicrohttpd	0.9.25	0.9.25.x
gnu / libmicrohttpd	0.9.22	0.9.22.x
gnu / libmicrohttpd	0.9.30	0.9.30.x
gnu / libmicrohttpd	0.9.20	0.9.20.x
gnu / libmicrohttpd	0.9.18	0.9.18.x
gnu / libmicrohttpd	0.9.17	0.9.17.x
gnu / libmicrohttpd	-	0.9.31.x
gnu / libmicrohttpd	0.9.21	0.9.21.x
gnu / libmicrohttpd	0.9.24	0.9.24.x
gnu / libmicrohttpd	0.9.16	0.9.16.x
gnu / libmicrohttpd	0.9.26	0.9.26.x
gnu / libmicrohttpd	0.9.19	0.9.19.x

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo