This page aggregates publicly disclosed CVE and security risk information related to inktomi, with CVSS, EPSS, publication dates, and vulnerability intelligence data to help assess potential risk and remediation priority.
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2006-6658 | Inktomi Search 4.1.4 allows remote attackers to obtain sensitive information via direct requests with missing parameters to (1) help/header.html, (2) thesaurus.html, and (3) topics.html, which leak the installation path in the resulting error message, a related issue to CVE-2006-5970. | [email protected] | 5.0 | 1.14% | 2006-12-19 | 2026-06-16 |
| CVE-2003-0292 | Cross-site scripting (XSS) vulnerability in Inktomi Traffic-Server 5.5.1 allows remote attackers to insert arbitrary web script or HTML into an error page that appears to come from the domain that the client is visiting, aka "Man-in-the-Middle" XSS. | [email protected] | 6.8 | 1.61% | 2003-06-16 | 2026-06-16 |
| CVE-2002-1013 | Buffer overflow in traffic_manager for Inktomi Traffic Server 4.0.18 through 5.2.2, Traffic Edge 1.1.2 and 1.5.0, and Media-IXT 3.0.4 allows local users to gain root privileges via a long -path argument. | [email protected] | 7.2 | 0.79% | 2002-10-04 | 2026-06-16 |
| CVE-2000-1019 | Search engine in Ultraseek 3.1 and 3.1.10 (aka Inktomi Search) allows remote attackers to cause a denial of service via a malformed URL. | [email protected] | 5.0 | 1.66% | 2000-12-11 | 2026-06-16 |