CVE Record: CVE-2022-2809

alert

Notice: Keyword searching of CVE Records is now available in the search box above. Keywords may include a CVE ID (e.g., CVE-2024-1234), or one or more keywords separated by a space (e.g., authorization, SQL Injection, cross site scripting, etc.). Learn more here.

alert

Notice: Keyword searching of CVE Records is now available in the search box above. Keywords may include a CVE ID (e.g., CVE-2024-1234), or one or more keywords separated by a space (e.g., authorization, SQL Injection, cross site scripting, etc.). Learn more here.

Expand or collapse notification button

Required CVE Record Information

Description

A vulnerability in bmcweb of OpenBMC Project allows user to cause denial of service. When fuzzing the multipart_parser code using AFL++ with address sanitizer enabled to find smallest memory corruptions possible. It detected problem in how multipart_parser handles unclosed http headers. If long enough http header is passed in the multipart form without colon there is one byte overwrite on heap. It can be conducted multiple times in a loop to cause DoS.

CWE 2 Total

CVSS 1 Total

Product Status

Versions 1 Total

Default Status: unknown

affected

Credits

Finder: Jakub Rozanski, Intel Corporation
Remediation: Krzysztof Grobelny, Intel Corporation

References 1 Total

https://github.com/openbmc/bmcweb
external site

Updated: 2024-08-03

This container includes required additional information provided by the CVE Program for this vulnerability.

References 1 Total

https://github.com/openbmc/bmcweb
external site
x_transferred