Every CVE whose affected-product data names Hesiod Project Hesiod, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2016-10152 — CVSS 9.8 (critical): The read_config_file function in lib/hesiod.c in Hesiod 3.2.1 falls back to the ".athena.mit.edu" default domain when opening the…
CVE-2016-10151 — CVSS 7.0 (high): The hesiod_init function in lib/hesiod.c in Hesiod 3.2.1 compares EUID with UID to determine whether to use configurations from environment…