Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (129 CVEs found)

Export CSV
CVE Vendors Products Updated CVSS v3.1
CVE-2004-0510 1 Sco 1 Openserver 2026-04-16 N/A
Multiple buffer overflows in MMDF on OpenServer 5.0.6 and 5.0.7, and possibly other operating systems, may allow attackers to execute arbitrary code, as demonstrated via the execmail program.
CVE-1999-0153 2 Microsoft, Sco 4 Windows 2000, Windows 95, Windows Nt and 1 more 2026-04-16 N/A
Windows 95/NT out of band (OOB) data denial of service through NETBIOS port, aka WinNuke.
CVE-1999-0128 5 Digital, Ibm, Linux and 2 more 9 Osf 1, Aix, Sng and 6 more 2026-04-16 N/A
Oversized ICMP ping packets can result in a denial of service, aka Ping o' Death.
CVE-1999-0411 1 Sco 1 Openserver 2026-04-16 N/A
Several startup scripts in SCO OpenServer Enterprise System v 5.0.4p, including S84rpcinit, S95nis, S85tcp, and S89nfs, are vulnerable to a symlink attack, allowing a local user to gain root access.
CVE-1999-0476 1 Sco 1 Openserver 2026-04-16 N/A
A weak encryption algorithm is used for passwords in SCO TermVision, allowing them to be easily decrypted by a local user.
CVE-1999-0697 1 Sco 1 Openserver 2026-04-16 N/A
SCO Doctor allows local users to gain root privileges through a Tools option.
CVE-1999-0825 1 Sco 1 Unixware 2026-04-16 N/A
The default permissions for UnixWare /var/mail allow local users to read and modify other users' mail.
CVE-1999-0096 3 Bsdi, Freebsd, Sco 4 Bsd Os, Freebsd, Internet Faststart and 1 more 2026-04-16 N/A
Sendmail decode alias can be used to overwrite sensitive files.
CVE-2011-1432 1 Sco 1 Scoofficeserver 2025-04-11 N/A
The STARTTLS implementation in SCO SCOoffice Server does not properly restrict I/O buffering, which allows man-in-the-middle attackers to insert commands into encrypted SMTP sessions by sending a cleartext command that is processed after TLS is in place, related to a "plaintext command injection" attack, a similar issue to CVE-2011-0411.