Every CVE whose affected-product data names Qbik Wingate, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (14)
CVE-2020-13866 — CVSS 7.8 (high): WinGate v9.4.1.5998 has insecure permissions for the installation directory, which allows local users to gain privileges by replacing an…
CVE-2006-2926 — CVSS 7.5 (high): Stack-based buffer overflow in the WWW Proxy Server of Qbik WinGate 6.1.1.1077 allows remote attackers to cause a denial of service and…
CVE-1999-0291 — CVSS 7.5 (high): The WinGate proxy is installed without a password, which allows remote attackers to redirect connections without authentication.
CVE-2008-3606 — CVSS 6.5 (medium): Heap-based buffer overflow in the IMAP service in Qbik WinGate 6.2.2.1137 and earlier allows remote authenticated users to cause a denial…
CVE-2006-2917 — CVSS 5.5 (medium): Directory traversal vulnerability in the IMAP server in WinGate 6.1.2.1094 and 6.1.3.1096, and possibly other versions before 6.1.4 Build…
CVE-2009-0802 — CVSS 5.4 (medium): Qbik WinGate, when transparent interception mode is enabled, uses the HTTP Host header to determine the remote endpoint, which allows…
CVE-2004-0789 — CVSS 5.0 (medium): Multiple implementations of the DNS protocol, including (1) Poslib 1.0.2-1 and earlier as used by Posadis, (2) Axis Network products before…
CVE-1999-0290 — CVSS 5.0 (medium): The WinGate telnet proxy allows remote attackers to cause a denial of service via a large number of connections to localhost.
CVE-2004-0577 — CVSS 5.0 (medium): WinGate 5.2.3 build 901 and 6.0 beta 2 build 942, and other versions such as 5.0.5, allows remote attackers to read arbitrary files from…
CVE-2006-4518 — CVSS 5.0 (medium): Qbik WinGate 6.1.4 and earlier allows remote attackers to cause a denial of service (CPU consumption) via a DNS request with a…
CVE-2007-4335 — CVSS 5.0 (medium): Format string vulnerability in the SMTP server component in Qbik WinGate 5.x and 6.x before 6.2.2 allows remote attackers to cause a denial…
CVE-2000-1048 — CVSS 5.0 (medium): Directory traversal vulnerability in the logfile service of Wingate 4.1 Beta A and earlier allows remote attackers to read arbitrary files…
CVE-2004-0578 — CVSS 5.0 (medium): WinGate 5.2.3 build 901 and 6.0 beta 2 build 942, and other versions such as 5.0.5, allows remote attackers to read arbitrary files via…
CVE-1999-0441 — CVSS 5.0 (medium): Remote attackers can perform a denial of service in WinGate machines using a buffer overflow in the Winsock Redirector Service.