{"id":"CVE-2019-7659","details":"Genivia gSOAP 2.7.x and 2.8.x before 2.8.75 allows attackers to cause a denial of service (application abort) or possibly have unspecified other impact if a server application is built with the -DWITH_COOKIES flag. This affects the C/C++ libgsoapck/libgsoapck++ and libgsoapssl/libgsoapssl++ libraries, as these are built with that flag.","modified":"2026-03-14T09:40:00.737852Z","published":"2019-02-09T14:29:00.193Z","references":[{"type":"ADVISORY","url":"https://lists.debian.org/debian-lts-announce/2019/02/msg00027.html"},{"type":"ADVISORY","url":"https://www.genivia.com/advisory.html#Bug_in_gSOAP_versions_2.7.0_to_2.8.74_for_applications_built_with_the_WITH_COOKIES_flag_enabled_%28Jan_14%2C_2019%29"},{"type":"ARTICLE","url":"https://outpost24.com/blog/gsoap-vulnerability-identified"}],"affected":[{"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"2.7.0"},{"last_affected":"2.7.17"}]},{"events":[{"introduced":"2.8.0"},{"fixed":"2.8.75"}]},{"events":[{"introduced":"0"},{"last_affected":"8.0"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-7659.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}