VYPR

bmcweb

by OpenBMC Project

CVEs (2)

  • CVE-2022-3409HigOct 27, 2022
    risk 0.53cvss 8.2epss 0.01

    A vulnerability in bmcweb of OpenBMC Project allows user to cause denial of service. This vulnerability was identified during mitigation for CVE-2022-2809. When fuzzing the multipart_parser code using AFL++ with address sanitizer enabled to find smallest memory corruptions…

  • CVE-2022-2809HigOct 27, 2022
    risk 0.53cvss 8.2epss 0.01

    A vulnerability in bmcweb of OpenBMC Project allows user to cause denial of service. When fuzzing the multipart_parser code using AFL++ with address sanitizer enabled to find smallest memory corruptions possible. It detected problem in how multipart_parser handles unclosed http…