Every CVE whose affected-product data names Gnu Ed, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2008-3916 — CVSS 9.3 (critical): Heap-based buffer overflow in the strip_escapes function in signal.c in GNU ed before 1.0 allows context-dependent or user-assisted…
CVE-2017-5357 — CVSS 7.5 (high): regex.c in GNU ed before 1.14.1 allows attackers to cause a denial of service (crash) via a malformed command, which triggers an invalid…
CVE-2000-1137 — CVSS 4.6 (medium): GNU ed before 0.2-18.1 allows local users to overwrite the files of other users via a symlink attack.
CVE-2006-6939 — CVSS 4.6 (medium): GNU ed before 0.3 allows local users to overwrite arbitrary files via a symlink attack on temporary files, possibly in the open_sbuf…