Every CVE whose affected-product data names Leanote Desktop, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2017-1000492 — CVSS 6.1 (medium): Leanote-desktop version v2.5 is vulnerable to a XSS which leads to code execution due to enabled node integration
CVE-2024-0849 — CVSS 5.0 (medium): Leanote version 2.7.0 allows obtaining arbitrary local files. This is possible because the application is vulnerable to LFR.