Every CVE whose affected-product data names Redhat Lha, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2004-0234 — CVSS 10.0 (critical): Multiple stack-based buffer overflows in the get_header function in header.c for LHA 1.14, as used in products such as Barracuda Spam…
CVE-2004-0235 — CVSS 6.4 (medium): Multiple directory traversal vulnerabilities in LHA 1.14 allow remote attackers or local users to create arbitrary files via an LHA archive…