Shadowsocks Shadowsocks-libev — known CVE vulnerabilities
Every CVE whose affected-product data names Shadowsocks Shadowsocks-libev, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2017-15924 — CVSS 7.8 (high): In manager.c in ss-manager in shadowsocks-libev 3.1.0, improper parsing allows command injection via shell metacharacters in a JSON…
CVE-2019-5164 — CVSS 7.8 (high): An exploitable code execution vulnerability exists in the ss-manager binary of Shadowsocks-libev 3.3.2. Specially crafted network packets…
CVE-2019-5163 — CVSS 7.5 (high): An exploitable denial-of-service vulnerability exists in the UDPRelay functionality of Shadowsocks-libev 3.3.2. When utilizing a Stream…
CVE-2019-5152 — CVSS 7.4 (high): An exploitable information disclosure vulnerability exists in the network packet handling functionality of Shadowsocks-libev 3.3.2. When…