Every CVE whose affected-product data names Lynx Project Lynx, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-1999-1549 — CVSS 7.8 (high): Lynx 2.x does not properly distinguish between internal and external HTML, which may allow a local attacker to read a "secure" hidden form…
CVE-2014-5002 — CVSS 7.8 (high): The lynx gem before 1.0.0 for Ruby places the configured password on command lines, which allows local users to obtain sensitive…
CVE-2017-1000211 — CVSS 5.3 (medium): Lynx before 2.8.9dev.16 is vulnerable to a use after free in the HTML parser resulting in memory disclosure, because HTML_put_string() can…
CVE-2021-38165 — CVSS 5.3 (medium): Lynx through 2.8.9 mishandles the userinfo subcomponent of a URI, which allows remote attackers to discover cleartext credentials because…