Fedora Account System
Red Hat Associate
Red Hat Customer
Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process.
See https://github.com/civetweb/civetweb/issues/1382 Since CivetWeb is utilized as an embedded component within your application, the underlying code does not inherently expose your software to this flaw. Your application would only be susceptible to this type of attack if the following conditions are met simultaneously during deployment: 1. Your application is registered as a Windows service. 2. The path where your application is installed contains spaces in the folder names (as typically occurs in C:\Archivos de programa\ or C:\Program Files). 3. The installation process or the script that registers your application’s service does not enclose the full executable path in quotation marks. Based on the above, closing as NOTABUG