Every CVE whose affected-product data names Andries Brouwer Man, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2003-0124 — CVSS 4.6 (medium): man before 1.5l allows attackers to execute arbitrary code via a malformed man file with improper quotes, which causes the my_xsprintf…
CVE-2003-0620 — CVSS 4.6 (medium): Multiple buffer overflows in man-db 2.4.1 and earlier, when installed setuid, allow local users to gain privileges via (1)…
CVE-2003-0645 — CVSS 4.6 (medium): man-db 2.3.12 and 2.3.18 to 2.4.1 uses certain user-controlled DEFINE directives from the ~/.manpath file, even when running setuid, which…