Every CVE whose affected-product data names Sphinxsearch Sphinx, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2019-14511 — CVSS 7.5 (high): Sphinx Technologies Sphinx 3.1.1 by default has no authentication and listens on 0.0.0.0, making it exposed to the internet (unless…
CVE-2020-29050 — CVSS 7.5 (high): SphinxSearch in Sphinx Technologies Sphinx through 3.1.1 allows directory traversal (in conjunction with CVE-2019-14511) because the mysql…