Every CVE whose affected-product data names Astaro Security Linux, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (8)
CVE-2005-3985 — CVSS 7.8 (high): The Internet Key Exchange version 1 (IKEv1) implementation in Astaro Security Linux before 6.102 allows remote attackers to cause a denial…
CVE-2002-0029 — CVSS 7.5 (high): Buffer overflows in the DNS stub resolver library in ISC BIND 4.9.2 through 4.9.10, and other derived libraries such as BSD libc and GNU…
CVE-2005-2729 — CVSS 7.5 (high): The HTTP proxy in Astaro Security Linux 6.0 does not properly filter HTTP CONNECT requests to localhost, which allows remote attackers to…
CVE-2005-2730 — CVSS 5.0 (medium): The HTTP proxy in Astaro Security Linux 6.0 allows remote attackers to obtain sensitive information via an invalid request, which reveals a…
CVE-2005-3100 — CVSS 5.0 (medium): Unspecified "PPTP Remote DoS Vulnerability" in Astaro Security Linux 4.027 allows attackers to cause a denial of service.
CVE-2004-2251 — CVSS 5.0 (medium): The PPTP server in Astaro Security Linux before 4.024 provides information about its version, which makes it easier for remote attackers to…
CVE-2002-1737 — CVSS 2.1 (low): Astaro Security Linux 2.016 creates world-writable files and directories, which allows local users to overwrite arbitrary files.
CVE-2005-2731 — CVSS 2.1 (low): Directory traversal vulnerability in Astaro Security Linux 6.0, when using Webmin, allows remote authenticated webmin users to read…