Every CVE whose affected-product data names Gnu Guile, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2016-8606 — CVSS 9.8 (critical): The REPL server (--listen) in GNU Guile 2.0.12 allows an attacker to execute arbitrary code via an HTTP inter-protocol attack.
CVE-2016-8605 — CVSS 5.3 (medium): The mkdir procedure of GNU Guile temporarily changed the process' umask to zero. During that time window, in a multithreaded application…