VYPR
Vendor

Nmap

Products
2
CVEs
7
Across products
7
Status
Private

Products

2

Recent CVEs

7
  • CVE-2018-15173HigAug 8, 2018
    risk 0.49cvss 7.5epss 0.06

    Nmap through 7.70, when the -sV option is used, allows remote attackers to cause a denial of service (stack consumption and application crash) via a crafted TCP-based service.

  • CVE-2018-25282MedApr 26, 2026
    risk 0.40cvss 6.2epss 0.00

    Nmap 7.70 contains a denial of service vulnerability that allows local attackers to crash the application by processing malicious XML files with exponential entity expansion. Attackers can create a crafted XML file with nested entity definitions and open it through ZenMap's scan…

  • CVE-2018-1000161MedApr 18, 2018
    risk 0.37cvss 5.7epss 0.01

    nmap version 6.49BETA6 through 7.60, up to and including SVN revision 37147 contains a Directory Traversal vulnerability in NSE script http-fetch that can result in file overwrite as the user is running it. This attack appears to be exploitable via a victim that runs NSE script…

  • CVE-2026-58058Jun 28, 2026
    risk 0.00cvss epss 0.00

    Nmap through 7.99 does not keep the IPv6 extension-header walk within the captured packet in ipv6_get_data_primitive (libnetutil/netutil.cc), so the pointer advances past the buffer and the remaining-length computation underflows to a large value. A scanned target or on-path…

  • CVE-2017-18594Aug 28, 2019
    risk 0.00cvss epss 0.03

    nse_libssh2.cc in Nmap 7.70 is subject to a denial of service condition due to a double free when an SSH connection fails, as demonstrated by a leading \n character to ssh-brute.nse or ssh-auth-methods.nse.

  • CVE-2019-11490Apr 24, 2019
    risk 0.00cvss epss 0.01

    An issue was discovered in Npcap 0.992. Sending a malformed .pcap file with the loopback adapter using either pcap_sendqueue_queue() or pcap_sendqueue_transmit() results in kernel pool corruption. This could lead to arbitrary code executing inside the Windows kernel and allow…

  • CVE-2013-4885Oct 26, 2013
    risk 0.00cvss epss 0.07

    The http-domino-enum-passwords.nse script in NMap before 6.40, when domino-enum-passwords.idpath is set, allows remote servers to upload "arbitrarily named" files via a crafted FullName parameter in a response, as demonstrated using directory traversal sequences.