Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.

Latest Critical Actively Exploited Remotely Exploitable

5.5

MEDIUM

CVE-2019-1010302

jhead 3.03 is affected by: Incorrect Access Control. The impact is: Denial of service. The component is: iptc.c Line 122 show_IPTC(). The attack vector is: the victim must open a specially crafted JPEG file....

Affected Products : fedora debian_linux jhead
EPSS Score: %0.09

Published: Jul. 15, 2019

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2019-1010301

jhead 3.03 is affected by: Buffer Overflow. The impact is: Denial of service. The component is: gpsinfo.c Line 151 ProcessGpsInfo(). The attack vector is: Open a specially crafted JPEG file....

Affected Products : fedora debian_linux jhead
EPSS Score: %0.13

Published: Jul. 15, 2019

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2019-10018

An issue was discovered in Xpdf 4.01.01. There is an FPE in the function PostScriptFunction::exec at Function.cc for the psOpIdiv case....

Affected Products : ubuntu_linux debian_linux xpdf
EPSS Score: %0.49

Published: Mar. 25, 2019

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2014-9892

The snd_compr_tstamp function in sound/core/compress_offload.c in the Linux kernel through 4.7, as used in Android before 2016-08-05 on Nexus 5 and 7 (2013) devices, does not properly initialize a timestamp data structure, which allows attackers to obtain...

Affected Products : android linux_kernel
EPSS Score: %0.16

Published: Aug. 06, 2016

Modified: Apr. 12, 2025
5.5

MEDIUM

CVE-2019-0848

An information disclosure vulnerability exists when the win32k component improperly provides kernel information, aka 'Win32k Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0814....

Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_server windows
EPSS Score: %1.00

Published: Apr. 09, 2019

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2019-0844

An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0840....

Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_server windows
EPSS Score: %0.98

Published: Apr. 09, 2019

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2019-0837

An information disclosure vulnerability exists when DirectX improperly handles objects in memory, aka 'DirectX Information Disclosure Vulnerability'....

Affected Products : windows_10 windows_server_2016 windows_server windows
EPSS Score: %0.98

Published: Apr. 09, 2019

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2019-0796

An elevation of privilege vulnerability exists when Windows improperly handles calls to the LUAFV driver (luafv.sys), aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0730, CVE-2019-0731, CVE-2019-0805, CVE-2019-0836...

Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_server windows
EPSS Score: %3.43

Published: Apr. 09, 2019

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2019-0782

An information disclosure vulnerability exists when the Windows kernel fails to properly initialize a memory address, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0702, CVE-2019-0755, CVE-2019-0767, CVE-20...

Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_server windows
EPSS Score: %0.91

Published: Apr. 09, 2019

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2019-0767

An information disclosure vulnerability exists when the Windows kernel improperly initializes objects in memory.To exploit this vulnerability, an authenticated attacker could run a specially crafted application, aka 'Windows Kernel Information Disclosure ...

Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_server windows
EPSS Score: %0.91

Published: Apr. 09, 2019

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2019-0759

An information disclosure vulnerability exists when the Windows Print Spooler does not properly handle objects in memory, aka 'Windows Print Spooler Information Disclosure Vulnerability'....

Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_server windows
EPSS Score: %0.40

Published: Apr. 09, 2019

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2024-50182

In the Linux kernel, the following vulnerability has been resolved: secretmem: disable memfd_secret() if arch cannot set direct map Return -ENOSYS from memfd_secret() syscall if !can_set_direct_map(). This is the case for example on some arm64 configur...

Affected Products : linux_kernel
Published: Nov. 08, 2024

Modified: Nov. 29, 2024
5.5

MEDIUM

CVE-2019-0569

An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Wi...

Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows windows_server_2012_r2
EPSS Score: %0.37

Published: Jan. 08, 2019

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2019-0561

An information disclosure vulnerability exists when Microsoft Word macro buttons are used improperly, aka "Microsoft Word Information Disclosure Vulnerability." This affects Microsoft Word, Office 365 ProPlus, Microsoft Office, Word....

Affected Products : office word office_365_proplus sharepoint_server office_web_apps_server word_automation_services
EPSS Score: %13.34

Published: Jan. 08, 2019

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2019-0549

An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Wi...

Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows windows_server_2012_r2
EPSS Score: %1.08

Published: Jan. 08, 2019

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2019-0540

A security feature bypass vulnerability exists when Microsoft Office does not validate URLs.An attacker could send a victim a specially crafted file, which could trick the victim into entering credentials, aka 'Microsoft Office Security Feature Bypass Vul...

Affected Products : office excel_viewer office_365_proplus powerpoint_viewer word_viewer office_compatibility_pack
EPSS Score: %12.88

Published: Mar. 05, 2019

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2018-9058

In Long Range Zip (aka lrzip) 0.631, there is an infinite loop in the runzip_fd function of runzip.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted lrz file....

Affected Products : long_range_zip
EPSS Score: %0.42

Published: Mar. 27, 2018

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2018-8621

An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows Server 2012, Windows 7, Windows Server 2008 R2. This CVE ID is uni...

Affected Products : windows_7 windows_server_2008 windows_server_2012
EPSS Score: %0.66

Published: Dec. 12, 2018

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2024-51514

Vulnerability of pop-up windows belonging to no app in the VPN module Impact: Successful exploitation of this vulnerability may affect service confidentiality....

Affected Products : harmonyos
Published: Nov. 05, 2024

Modified: Nov. 07, 2024
5.5

MEDIUM

CVE-2018-8446

An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Wi...

Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows windows_server_2012_r2
EPSS Score: %4.71

Published: Sep. 13, 2018

Modified: Nov. 21, 2024

Showing 20 of 291562 Results

Latest CVE Feed

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

Theme Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable