VYPR

Stork

by Stork

CVEs (2)

  • CVE-2024-28872HigJul 11, 2024
    risk 0.58cvss 8.9epss 0.00

    The TLS certificate validation code is flawed. An attacker can obtain a TLS certificate from the Stork server and use it to connect to the Stork agent. Once this connection is established with the valid certificate, the attacker can send malicious commands to a monitored service…

  • CVE-2025-8696HigSep 10, 2025
    risk 0.49cvss 7.5epss 0.00

    If an unauthenticated user sends a large amount of data to the Stork UI, it may cause memory and disk use problems for the system running the Stork server. This issue affects Stork versions 1.0.0 through 2.3.0.