Every CVE whose affected-product data names Webdav Neon, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2004-0398 — CVSS 7.5 (high): Heap-based buffer overflow in the ne_rfc1036_parse date parsing function for the neon library (libneon) 0.24.5 and earlier, as used by…
CVE-2004-0179 — CVSS 6.8 (medium): Multiple format string vulnerabilities in (1) neon 0.24.4 and earlier, and other products that use neon including (2) Cadaver, (3)…
CVE-2009-2474 — CVSS 5.8 (medium): neon before 0.28.6, when OpenSSL or GnuTLS is used, does not properly handle a '\0' character in a domain name in the subject's Common Name…
CVE-2008-3746 — CVSS 4.3 (medium): neon 0.28.0 through 0.28.2 allows remote servers to cause a denial of service (NULL pointer dereference and crash) via vectors related to…
CVE-2009-2473 — CVSS 4.3 (medium): neon before 0.28.6, when expat is used, does not properly detect recursion during entity expansion, which allows context-dependent…