CVE-2019-16278CISA KEVEPSS p99.9%

CVE-2019-16278Nostromo nhttpd Directory Traversal Vulnerability

Nostromo / nhttpd

Description

Nostromo nhttpd contains a directory traversal vulnerability in the http_verify() function in a non-chrooted nhttpd server allowing for remote code execution.

Scoring

EPSS99.06% probability of exploitation · percentile 99.9% · 2026-06-15T12:03:41Z

CISA KEV entry

Added to KEV: 2024-11-07

(incoming)1

TypeTargetConfidenceTier
KEVEntryNostromo nhttpd Directory Traversal Vulnerabilitykev-cve-2019-162780%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
Apache HTTP Server Path Traversal Vulnerability
CVE
CVE-2025-41368
CVE
ThinkPHP "noneCms" Remote Code Execution Vulnerability
CVE
CVE-2026-7474
CVE
CVE-2025-3365
CVE
CVE-2025-11366
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.