Vulnerabilities > Openwsman Project

DATE CVE VULNERABILITY TITLE RISK
2019-03-14 CVE-2019-3833 Infinite Loop vulnerability in multiple products
Openwsman, versions up to and including 2.6.9, are vulnerable to infinite loop in process_connection() when parsing specially crafted HTTP requests.
7.5
2019-03-14 CVE-2019-3816 Path Traversal vulnerability in multiple products
Openwsman, versions up to and including 2.6.9, are vulnerable to arbitrary file disclosure because the working directory of openwsmand daemon was set to root directory.
7.5