Unspecified vulnerability in the media server in Orb Networks Orb before 2.01.0025 allows remote attackers to cause a denial of service (daemon crash) via a malformed HTTP request.
Conclusion & alert: CVE-2008-5564 is rated Moderate Risk (44.6/100): CVSS Medium severity, with medium exploitation likelihood (EPSS 0.73%). Mandatory action: Review affected assets and schedule remediation.
Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.
EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).
| # | Date | Old EPSS score | New EPSS score | Delta (New - Old) |
|---|---|---|---|---|
| 1 | 2025-03-30 | 0.80% | 0.73% | -0.07% |
| 2 | 2025-03-29 | 0.73% | 0.80% | +0.07% |
| 3 | 2025-03-17 | — | 0.73% | — |
Full EPSS history (7 records total)
CVSS metrics for this CVE.
| Base score | Version | Severity | Vector | Exploitability | Impact | Score source |
|---|---|---|---|---|---|---|
| 5.0 | 2.0 | MEDIUM |
|
10.0 | 2.9 | [email protected] |
| Vendor | Product | Version | Raw CPE |
|---|---|---|---|
| orb_networks | orb | <= 2.01.0022 | cpe:2.3:a:orb_networks:orb:*:*:*:*:*:*:*:* |
| orb_networks | orb | 2.00.0930 | cpe:2.3:a:orb_networks:orb:2.00.0930:*:*:*:*:*:*:* |
| orb_networks | orb | 2.00.0989 | cpe:2.3:a:orb_networks:orb:2.00.0989:*:*:*:*:*:*:* |
| orb_networks | orb | 2.00.1014 | cpe:2.3:a:orb_networks:orb:2.00.1014:*:*:*:*:*:*:* |
| orb_networks | orb | 2.00.1084 | cpe:2.3:a:orb_networks:orb:2.00.1084:*:*:*:*:*:*:* |
| orb_networks | orb | 2.01.0008 | cpe:2.3:a:orb_networks:orb:2.01.0008:*:*:*:*:*:*:* |
| orb_networks | orb | 2.01.0013 | cpe:2.3:a:orb_networks:orb:2.01.0013:*:*:*:*:*:*:* |
| orb_networks | orb | 2.01.0015 | cpe:2.3:a:orb_networks:orb:2.01.0015:*:*:*:*:*:*:* |
| orb_networks | orb | 2.01.0017 | cpe:2.3:a:orb_networks:orb:2.01.0017:*:*:*:*:*:*:* |