Carnegie Mellon University Cyrus-sasl — known CVE vulnerabilities
Every CVE whose affected-product data names Carnegie Mellon University Cyrus-sasl, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2009-0688 — CVSS 7.5 (high): Multiple buffer overflows in the CMU Cyrus SASL library before 2.1.23 might allow remote attackers to execute arbitrary code or cause a…
CVE-2000-0956 — CVSS 4.6 (medium): cyrus-sasl before 1.5.24 in Red Hat Linux 7.0 does not properly verify the authorization for a local user, which could allow the users to…