Every CVE whose affected-product data names Nortel Contivity, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (9)
CVE-2007-2333 — CVSS 10.0 (critical): Nortel VPN Router (aka Contivity) 1000, 2000, 4000, and 5000 before 5_05.149, 5_05.3xx before 5_05.304, and 6.x before 6_05.140 includes…
CVE-2007-2334 — CVSS 7.5 (high): Nortel VPN Router (aka Contivity) 1000, 2000, 4000, and 5000 before 5_05.149, 5_05.3xx before 5_05.304, and 6.x before 6_05.140 has two…
CVE-2005-2579 — CVSS 7.2 (high): Nortel Contivity VPN Client V05_01.030, when configuring a certificate to be used as authentication, does not properly drop system…
CVE-2005-1802 — CVSS 5.0 (medium): Nortel VPN Router (aka Contivity) allows remote attackers to cause a denial of service (crash) via an IPsec IKE packet with a malformed…
CVE-2000-0063 — CVSS 5.0 (medium): cgiproc CGI script in Nortel Contivity HTTP server allows remote attackers to read arbitrary files by specifying the filename in a…
CVE-2000-0064 — CVSS 5.0 (medium): cgiproc CGI script in Nortel Contivity HTTP server allows remote attackers to cause a denial of service via a malformed URL that includes…
CVE-2004-1105 — CVSS 5.0 (medium): Nortel Networks Contivity VPN Client displays a different error message depending on whether the username is valid or invalid, which could…
CVE-2005-0844 — CVSS 4.6 (medium): Nortel VPN client 5.01 stores the cleartext password in the memory of the Extranet.exe process, which could allow local users to obtain…
CVE-2004-2621 — CVSS 4.0 (medium): Nortel Contivity VPN Client 2.1.7, 3.00, 3.01, 4.91, and 5.01, when opening a VPN tunnel, does not check the gateway certificate until…