VYPR
Vendor

babelouest

Products
3
CVEs
3
Across products
3
Status
Private

Products

3

Recent CVEs

3
  • CVE-2022-38493HigAug 20, 2022
    risk 0.00cvss 7.5epss 0.00

    Rhonabwy 0.9.99 through 1.1.x before 1.1.7 doesn't check the RSA private key length before RSA-OAEP decryption. This allows attackers to cause a Denial of Service via a crafted JWE (JSON Web Encryption) token.

  • CVE-2022-29967HigApr 29, 2022
    risk 0.00cvss 7.5epss 0.01

    static_compressed_inmemory_website_callback.c in Glewlwyd through 2.6.2 allows directory traversal.

  • CVE-2021-45379HigDec 30, 2021
    risk 0.00cvss 8.8epss 0.01

    Glewlwyd 2.0.0, fixed in 2.6.1 is affected by an incorrect access control vulnerability. One user can attempt to log in as another user without its password.