Every CVE whose affected-product data names File, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2004-1304 — CVSS 10.0 (critical): Stack-based buffer overflow in the ELF header parsing code in file before 4.12 allows attackers to execute arbitrary code via a crafted ELF…
CVE-2007-1536 — CVSS 9.3 (critical): Integer underflow in the file_printf function in the "file" program before 4.20 allows user-assisted attackers to execute arbitrary code…
CVE-2007-2799 — CVSS 5.1 (medium): Integer overflow in the "file" program 4.20, when running on 32-bit systems, as used in products including The Sleuth Kit, might allow…
CVE-2003-0102 — CVSS 4.6 (medium): Buffer overflow in tryelf() in readelf.c of the file command allows attackers to execute arbitrary code as the user running file, possibly…