Greenbone Greenbone Security Assistant — known CVE vulnerabilities
Every CVE whose affected-product data names Greenbone Greenbone Security Assistant, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2018-25016 — CVSS 9.8 (critical): Greenbone Security Assistant (GSA) before 7.0.3 and Greenbone OS (GOS) before 5.0.0 allow Host Header Injection.
CVE-2011-0650 — CVSS 6.8 (medium): Cross-site request forgery (CSRF) vulnerability in Greenbone Security Assistant (GSA) before 2.0+rc3 allows remote attackers to hijack the…
CVE-2016-1926 — CVSS 6.1 (medium): Cross-site scripting (XSS) vulnerability in the charts module in Greenbone Security Assistant (GSA) 6.x before 6.0.8 allows remote…
CVE-2019-25047 — CVSS 6.1 (medium): Greenbone Security Assistant (GSA) before 8.0.2 and Greenbone OS (GOS) before 5.0.10 allow XSS during 404 URL handling in gsad.