Every CVE whose affected-product data names Michael Bischoff Xsok, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2003-0949 — CVSS 4.6 (medium): xsok 1.02 does not properly drop privileges before finding and executing the "gunzip" program, which allows local users to execute…
CVE-2004-0074 — CVSS 4.6 (medium): Multiple buffer overflows in xsok 1.02 allows local users to gain privileges via (1) a long LANG environment variable, or (2) a long…