Every CVE whose affected-product data names Groonga Groonga-httpd, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (1)
CVE-2019-11675 — CVSS 7.0 (high): The groonga-httpd package 6.1.5-1 for Debian sets the /var/log/groonga ownership to the groonga account, which might let local users obtain…