Every CVE whose affected-product data names Opscode Chef, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2010-5142 — CVSS 6.5 (medium): chef-server-api/app/controllers/users.rb in the API in Chef before 0.9.0 does not require administrative privileges for the create…
CVE-2011-5098 — CVSS 6.5 (medium): chef-server-api/app/controllers/clients.rb in Chef Server in Chef before 0.9.20, and 0.10.x before 0.10.6, does not require administrative…
CVE-2011-5097 — CVSS 5.5 (medium): chef-server-api/app/controllers/cookbooks.rb in Chef Server in Chef before 0.9.18, and 0.10.x before 0.10.2, does not require…