Aggregates CVE and security vulnerability intelligence across all dec-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Common weakness patterns include vendor risk path handling and vendor risk denial of service, with potential vendor impact file overwrite across vendor surface production workloads and vendor surface software deployment use cases.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2006-4537 | NET$SESSION_CONTROL.EXE in DECnet-Plus in OpenVMS ALPHA 7.3-2 and Alpha 8.2 writes a password to an audit log file when there is a successful connection after a "network breakin" event, which allows local users to obtain passwords by reading the file. | [email protected] | 2.1 | 0.07% | 2006-09-05 | 2026-04-16 |
| CVE-2001-0845 | Vulnerability in DECwindows Motif Server on OpenVMS VAX or Alpha 6.2 through 7.3, and SEVMS VAX or Alpha 6.2, allows local users to gain access to unauthorized resources. | [email protected] | 4.6 | 0.07% | 2001-12-06 | 2026-04-16 |
| CVE-1999-1315 | Vulnerabilities in DECnet/OSI for OpenVMS before 5.8 on DEC Alpha AXP and VAX/VMS systems allow local users to gain privileges or cause a denial of service. | [email protected] | 4.6 | 0.06% | 1999-12-31 | 2026-04-16 |
| CVE-1999-1312 | Vulnerability in DEC OpenVMS VAX 5.5-2 through 5.0, and OpenVMS AXP 1.0, allows local users to gain system privileges. | [email protected] | 7.2 | 0.33% | 1993-02-24 | 2026-04-16 |
| CVE-1999-1395 | Vulnerability in Monitor utility (SYS$SHARE:SPISHR.EXE) in VMS 5.0 through 5.4-2 allows local users to gain privileges. | [email protected] | 7.2 | 2.07% | 1992-11-17 | 2026-04-16 |