Evolvable Corporation Shambala Server — known CVE vulnerabilities
Every CVE whose affected-product data names Evolvable Corporation Shambala Server, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2000-0954 — CVSS 10.0 (critical): Shambala Server 4.5 stores passwords in plaintext, which could allow local users to obtain the passwords and compromise the server.
CVE-2001-0758 — CVSS 7.5 (high): Directory traversal vulnerability in Shambala 4.5 allows remote attackers to escape the FTP root directory via "CWD ..." command.
CVE-2000-0953 — CVSS 5.0 (medium): Shambala Server 4.5 allows remote attackers to cause a denial of service by opening then closing a connection.
CVE-2002-0876 — CVSS 5.0 (medium): Web server for Shambala 4.5 allows remote attackers to cause a denial of service (crash) via a malformed HTTP request.
CVE-2002-0877 — CVSS 5.0 (medium): Directory traversal vulnerability in the FTP server for Shambala 4.5 allows remote attackers to read arbitrary files via a .. (dot dot) in…