Lucene search
K

4 matches found

NVD
NVD
added 2022/10/27 1:15 p.m.20 views

CVE-2022-3409

A vulnerability in bmcweb of OpenBMC Project allows user to cause denial of service. This vulnerability was identified during mitigation for CVE-2022-2809. When fuzzing the multipartparser code using AFL++ with address sanitizer enabled to find smallest memory corruptions possible. It detected...

8.2CVSS0.00591EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/10/27 1:9 p.m.24 views

CVE-2022-3409 Unauthenticated out of bounds stack write in bmcweb

A vulnerability in bmcweb of OpenBMC Project allows user to cause denial of service. This vulnerability was identified during mitigation for CVE-2022-2809. When fuzzing the multipartparser code using AFL++ with address sanitizer enabled to find smallest memory corruptions possible. It detected...

8.2CVSS8.2AI score0.00591EPSS
Exploits0References1
CVE
CVE
added 2022/10/27 1:9 p.m.59 views

CVE-2022-3409

CVE-2022-3409 concerns the bmcweb component of the OpenBMC project. The issue arises in the multipart_parser when handling unclosed HTTP headers: passing a long multipart form header without a colon can overwrite one byte on the heap, enabling repeated exploitation to cause a denial of service. T...

8.2CVSS7.6AI score0.00591EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2022/10/27 1:9 p.m.4 views

CVE-2022-3409 Unauthenticated out of bounds stack write in bmcweb

A vulnerability in bmcweb of OpenBMC Project allows user to cause denial of service. This vulnerability was identified during mitigation for CVE-2022-2809. When fuzzing the multipartparser code using AFL++ with address sanitizer enabled to find smallest memory corruptions possible. It detected...

8.2CVSS8AI score0.00591EPSS
Exploits0References1
Rows per page
Query Builder