monkey-project

Top products

The 15 most recently published vulnerabilities affecting monkey-project.

• CVE-2025-63658A stack overflow in the mk_http_index_lookup function (mk_server/mk_http.c) of monkey commit f37e984 allows attackers to cause a Denial of Service (DoS) via sending a crafted HTTP request to the se...7.5Jan 29, 2026
• CVE-2025-63657An out-of-bounds read in the mk_mimetype_find function (mk_server/mk_mimetype.c) of monkey commit f37e984 allows attackers to cause a Denial of Service (DoS) via sending a crafted HTTP request to t...7.5Jan 29, 2026
• CVE-2025-63656An out-of-bounds read in the header_cmp function (mk_server/mk_http_parser.c) of monkey commit f37e984 allows attackers to cause a Denial of Service (DoS) via sending a crafted HTTP request to the ...7.5Jan 29, 2026
• CVE-2025-63655A NULL pointer dereference in the mk_http_range_parse function (mk_server/mk_http.c) of monkey commit f37e984 allows attackers to cause a Denial of Service (DoS) via sending a crafted HTTP request ...7.5Jan 29, 2026
• CVE-2025-63653An out-of-bounds read in the mk_vhost_fdt_close function (mk_server/mk_vhost.c) of monkey commit f37e984 allows attackers to cause a Denial of Service (DoS) via sending a crafted HTTP request to th...7.5Jan 29, 2026
• CVE-2025-63652A use-after-free in the mk_http_request_end function (mk_server/mk_http.c) of monkey commit f37e984 allows attackers to cause a Denial of Service (DoS) via sending a crafted HTTP request to the ser...7.5Jan 29, 2026
• CVE-2025-63651A use-after-free in the mk_string_char_search function (mk_core/mk_string.c) of monkey commit f37e984 allows attackers to cause a Denial of Service (DoS) via sending a crafted HTTP request to the s...7.5Jan 29, 2026
• CVE-2025-63650An out-of-bounds read in the mk_ptr_to_buf in mk_core function (mk_memory.c) of monkey commit f37e984 allows attackers to cause a Denial of Service (DoS) via sending a crafted HTTP request to the s...7.5Jan 29, 2026
• CVE-2025-63649An out-of-bounds read in the http_parser_transfer_encoding_chunked function (mk_server/mk_http_parser.c) of monkey commit f37e984 allows attackers to cause a Denial of Service (DoS) via sending a c...7.5Jan 29, 2026
• CVE-2013-2183Monkey HTTP Daemon has local security bypass7.1Dec 10, 2019
• CVE-2013-2159Monkey HTTP Daemon: broken user name authentication9.8Dec 10, 2019
• CVE-2013-1771The web server Monkeyd produces a world-readable log (/var/log/monkeyd/master.log) on gentoo.7.5Nov 7, 2019
• CVE-2014-5336Monkey HTTP Server before 1.5.3, when the File Descriptor Table (FDT) is enabled and custom error messages are set, allows remote attackers to cause a denial of service (file descriptor consumption...4.3Aug 26, 2014
• CVE-2013-2182The Mandril security plugin in Monkey HTTP Daemon (monkeyd) before 1.5.0 allows remote attackers to bypass access restrictions via a crafted URI, as demonstrated by an encoded forward slash.5.8Jun 13, 2014
• CVE-2013-2163Monkey HTTP Daemon (monkeyd) before 1.2.2 allows remote attackers to cause a denial of service (infinite loop) via an offset equal to the file size in the Range HTTP header.5.0Jun 13, 2014