Aggregates CVE and security vulnerability intelligence across all ti_kan-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Disclosed issues often relate to vendor risk path handling and vendor risk denial of service; exposure may include vendor impact file overwrite in vendor surface production workloads and vendor surface software deployment contexts.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2008-4994 | The (1) ncsarmt and (2) ncsawrap scripts in xmcd 2.6 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/Mosaic.*pid temporary file. | [email protected] | 6.9 | 0.04% | 2008-11-07 | 2026-04-23 |
| CVE-2006-2542 | xmcdconfig in xmcd for Debian GNU/Linux 2.6-17.1 creates /var/lib/cddb and /var/lib/xmcd/discog with world writable permissions, which allows local users to cause a denial of service (disk consumption). | [email protected] | 2.1 | 0.04% | 2006-05-23 | 2026-04-16 |
| CVE-2001-1119 | cda in xmcd 3.0.2 and 2.6 in SuSE Linux allows local users to overwrite arbitrary files via a symlink attack. | [email protected] | 6.2 | 0.51% | 2001-08-03 | 2026-04-16 |