Orange Software Orange Web Server — known CVE vulnerabilities
Every CVE whose affected-product data names Orange Software Orange Web Server, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2001-0647 — CVSS 5.0 (medium): Orange Web Server 2.1, based on GoAhead, allows a remote attacker to perform a denial of service via an HTTP GET request that does not…
CVE-2002-0680 — CVSS 5.0 (medium): Directory traversal vulnerability in GoAhead Web Server 2.1 allows remote attackers to read arbitrary files via a URL with an encoded /…