Armis Vulnerability Intelligence Database

By combining AI with human insight, Armis Vulnerability Intelligence Database offers extended coverage for vulnerabilities that matter to you, your industry, and provides you with clear remediation instructions.

CVE Name	Severity Score	Published Date	CISA KEV

Take These Insights to the Next Level

Armis now offers direct API access to Armis Vulnerability Intelligence Database through the AWS Marketplace, transforming it from a powerful research tool into an integrated component of your proactive security posture.

Seamless Integration: Directly feed Armis's contextual data into your existing stack.
Automated Workflows: Automate vulnerability lookups in real-time.
Custom Solutions: Use the raw data to build custom dashboards, reports, alerts.

GET THE API

Perspectives, Insights, and News

This Year Vulnerability Management Moves from the Basement to the C-suite

The evolution of cybersecurity practices are reshaping how organizations tackle vulnerabilities.

READ BLOG→

Closing the Loop

Making security everyone's business with prioritization and collaboration.

READ CASE STUDY→

The State of Cyberwarfare

The state of Cyberwarfare

LEARN MORE→

February 2002 CVEs

15 vulnerabilities published in February 2002.

CVE-2002-0001High 7.5
Vulnerability in RFC822 address parser in mutt before 1.2.5.1 and mutt 1.3.x before 1.3.25 allows remote attackers to execute arbitrary commands via an improperly terminated comment or phrase in the a…
CVE-2002-0003High 7.5
Buffer overflow in the groff preprocessor (versions 1.16 and earlier) that can allow remote attackers to gain privileges via lpd in the LPRng printing system.
CVE-2002-0028High 7.5
Buffer overflow in ICQ before 2001B Beta v5.18 Build #3659 that allows remote attackers to execute arbitrary code via a Voice Video & Games request.
CVE-2002-0048Critical 10.0
Multiple signedness errors (mixed signed and unsigned numbers) in rsync's I/O functions allow remote attackers to cause a denial of service and execute arbitrary code in the rsync client or server.
CVE-2002-0004High 7.2
Heap corruption vulnerability in the at program that allows local users to execute arbitrary code via a malformed execution time, causing at to free the same memory twice.
CVE-2002-1637Medium 4.6
An Oracle 9i Application Server (9iAS) vulnerability where multiple components are shipped with over 160 default usernames and passwords, including SYS, SYSTEM, AQJAVA, OWA, IMAGEUSER, USER1, USER2, P…
CVE-2001-1465Medium 4.6
Vulnerability in SurfControl SuperScout allows local users to bypass HTTP content filtering by fragmenting HTTP requests so that no single packet contains both an HTTP GET and a Host header.
CVE-2002-0012Critical 10.0
Vulnerabilities in a large number of SNMP implementations allow remote attackers to cause a denial of service or gain privileges via SNMPv1 trap handling, as demonstrated by the PROTOS c06-SNMPv1 test…
CVE-2002-0013Critical 10.0
Vulnerabilities in the SNMPv1 request handling of many SNMP implementations allow remote attackers to cause a denial of service or gain privileges via GetRequest, GetNextRequest, and SetRequest messag…
CVE-2002-1603Medium 5.0
GoAhead Web Server 2.1.7 and earlier allows remote attackers to obtain the ASP source code by issuing a URL terminated with a /, \, %2f, %20, or %00 character, causing the ASP source to be returned un…
CVE-2001-1079Low 3.6
CVE-2001-1079: In PSSP 3.2 with DCE 3.1 authentication on AIX, create_keyfiles creates keyfile directories with world-writable permissions, enabling a local user to delete key files and cause a denial…
CVE-2001-1058High 7.5
Remote attackers can bypass the Mathematica License Manager (mathlm) access control for Mathematica 4.0/4.1 and steal a license by sending a client request that includes an allowed host name.
CVE-2002-1601Medium 5.1
Privilege escalation vulnerability in Adobe PhotoDeluxe 3.1 where the Connectables feature prepends the Adobe directory to the CLASSPATH, enabling applets to run with higher privileges via HTML emails…
CVE-2001-1372Medium 5.0
Path disclosure vulnerability in Oracle 9i Application Server 1.0.2 allows remote attackers to reveal the server’s physical file path by requesting a non-existent .JSP file, leaking the pathname in th…
CVE-2001-1371High 7.5
The default configuration of Oracle Application Server 9iAS 1.0.2.2 enables SOAP and allows anonymous users to deploy applications by default via urn:soap-service-manager and urn:soap-provider-manager…