Every CVE whose affected-product data names Eterna Bozohttpd, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2010-2195 — CVSS 5.0 (medium): bozotic HTTP server (aka bozohttpd) 20090522 through 20100512 allows attackers to cause a denial of service via vectors related to a "wrong…
CVE-2010-2320 — CVSS 5.0 (medium): bozotic HTTP server (aka bozohttpd) before 20100621 allows remote attackers to list the contents of home directories, and determine the…
CVE-2014-5015 — CVSS 5.0 (medium): bozotic HTTP server (aka bozohttpd) before 20140708, as used in NetBSD, truncates paths when checking .htpasswd restrictions, which allows…