📦

wicked

Vendor: schneems

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 0 Remote Access

Total CVEs 3 Total Indexed

Avg. EPSS 0.58% Exploit Prob.

Latest CVE CVE-2020-7217 Feb 11

Security Vulnerability Index

Page 1 / 1

7.5 CVSS

CVE-2020-7217

An ni_dhcp4_fsm_process_dhcp4_packet memory leak in openSUSE wicked 0.6.55 and earlier allows network attackers to cause a denial of service by sending DHCP4 packets with a different client-id.

EPSS: 0.60%

Severity: HIGH

Feb 11, 2020

7.5 CVSS

CVE-2020-7216

An ni_dhcp4_parse_response memory leak in openSUSE wicked 0.6.55 and earlier allows network attackers to cause a denial of service by sending DHCP4 packets without a message type option.

EPSS: 0.34%

Severity: HIGH

Feb 05, 2020

5.0 CVSS

CVE-2013-4413

Directory traversal vulnerability in controller/concerns/render_redirect.rb in the Wicked gem before 1.0.1 for Ruby allows remote attackers to read arbitrary files via a %2E%2E%2F (encoded dot dot slash) in the step.

EPSS: 0.82%

Severity: MEDIUM

Mar 11, 2014

Displaying 3 of 3 Total Entries

Total 1 Sections