The default permissions of /dev/kmem in Linux versions before 2.0.36 allows IP spoofing.
9.8CVSS
7AI Score
0.002EPSS
Off-by-one error in the channel code of OpenSSH 2.0 through 3.0.2 allows local users or remote malicious servers to gain privileges.
9.8CVSS
9.1AI Score
0.014EPSS
The XInput extension in X.Org Xserver before 1.4.1 allows context-dependent attackers to execute arbitrary code via requests related to byte swapping and heap corruption within multiple functions, a different vulnerability than CVE-2007-4990.
9.8AI Score
0.035EPSS