Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.

Latest Critical Actively Exploited Remotely Exploitable

5.5

MEDIUM

CVE-2018-5295

In PoDoFo 0.9.5, there is an integer overflow in the PdfXRefStreamParserObject::ParseStream function (base/PdfXRefStreamParserObject.cpp). Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted pdf file....

Affected Products : podofo
EPSS Score: %0.37

Published: Jan. 08, 2018

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2023-40433

A logic issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.3. An app may bypass Gatekeeper checks....

Affected Products : macos
EPSS Score: %0.02

Published: Jan. 10, 2024

Modified: Jun. 03, 2025
5.5

MEDIUM

CVE-2018-8442

An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Wi...

Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows windows_server_2012_r2
EPSS Score: %4.71

Published: Sep. 13, 2018

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2018-8443

An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Wi...

Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows windows_server_2012_r2
EPSS Score: %4.71

Published: Sep. 13, 2018

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2018-8429

An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory, aka "Microsoft Excel Information Disclosure Vulnerability." This affects Microsoft Excel Viewer, Microsoft Office, Microsoft Excel....

Affected Products : office excel_viewer excel office_compatibility_pack office_for_mac
EPSS Score: %22.64

Published: Sep. 13, 2018

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2019-1093

An information disclosure vulnerability exists when DirectWrite improperly discloses the contents of its memory, aka 'DirectWrite Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1097....

Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_server windows
EPSS Score: %1.43

Published: Jul. 15, 2019

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2019-1091

An information disclosure vulnerability exists when Unistore.dll fails to properly handle objects in memory, aka 'Microsoft unistore.dll Information Disclosure Vulnerability'....

Affected Products : windows_10 windows_server_2016 windows_server_2019 windows_server windows
EPSS Score: %0.93

Published: Jul. 15, 2019

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2018-8419

An information disclosure vulnerability exists when the Windows kernel fails to properly initialize a memory address, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server...

Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server windows windows_server_2012_r2
EPSS Score: %1.18

Published: Sep. 13, 2018

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2018-8408

An information disclosure vulnerability exists when the Windows kernel improperly initializes objects in memory, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008...

Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows windows_server_2012_r2
EPSS Score: %0.69

Published: Nov. 14, 2018

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2019-1010301

jhead 3.03 is affected by: Buffer Overflow. The impact is: Denial of service. The component is: gpsinfo.c Line 151 ProcessGpsInfo(). The attack vector is: Open a specially crafted JPEG file....

Affected Products : fedora debian_linux jhead
EPSS Score: %0.13

Published: Jul. 15, 2019

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2023-40216

OpenBSD 7.3 before errata 014 is missing an argument-count bounds check in console terminal emulation. This could cause incorrect memory access and a kernel crash after receiving crafted DCS or CSI terminal escape sequences....

Affected Products : openbsd openbsd
EPSS Score: %0.04

Published: Aug. 10, 2023

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2019-10018

An issue was discovered in Xpdf 4.01.01. There is an FPE in the function PostScriptFunction::exec at Function.cc for the psOpIdiv case....

Affected Products : ubuntu_linux debian_linux xpdf
EPSS Score: %0.49

Published: Mar. 25, 2019

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2023-40360

QEMU through 8.0.4 accesses a NULL pointer in nvme_directive_receive in hw/nvme/ctrl.c because there is no check for whether an endurance group is configured before checking whether Flexible Data Placement is enabled....

Affected Products : qemu
EPSS Score: %0.03

Published: Aug. 14, 2023

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2018-8378

An information disclosure vulnerability exists when Microsoft Office software reads out of bound memory due to an uninitialized variable, which could disclose the contents of memory, aka "Microsoft Office Information Disclosure Vulnerability." This affect...

Affected Products : office word excel_viewer sharepoint_server office_web_apps office_word_viewer office_compatibility_pack sharepoint_enterprise_server_2013 sharepoint_enterprise_server_2016 word_automation_services
EPSS Score: %23.00

Published: Aug. 15, 2018

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2018-8356

A security feature bypass vulnerability exists when Microsoft .NET Framework components do not correctly validate certificates, aka ".NET Framework Security Feature Bypass Vulnerability." This affects .NET Framework 4.7.2, Microsoft .NET Framework 3.0, Mi...

Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 .net_framework powershell_core .net_core +3 more products
EPSS Score: %0.36

Published: Jul. 11, 2018

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2019-0844

An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0840....

Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_server windows
EPSS Score: %0.98

Published: Apr. 09, 2019

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2019-0837

An information disclosure vulnerability exists when DirectX improperly handles objects in memory, aka 'DirectX Information Disclosure Vulnerability'....

Affected Products : windows_10 windows_server_2016 windows_server windows
EPSS Score: %0.98

Published: Apr. 09, 2019

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2023-40164

Notepad++ is a free and open-source source code editor. Versions 8.5.6 and prior are vulnerable to global buffer read overflow in `nsCodingStateMachine::NextStater`. The exploitability of this issue is not clear. Potentially, it may be used to leak intern...

Affected Products : notepad\+\+
EPSS Score: %0.08

Published: Aug. 25, 2023

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2019-0796

An elevation of privilege vulnerability exists when Windows improperly handles calls to the LUAFV driver (luafv.sys), aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0730, CVE-2019-0731, CVE-2019-0805, CVE-2019-0836...

Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_server windows
EPSS Score: %3.43

Published: Apr. 09, 2019

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2018-8330

An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Wi...

Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows windows_server_2012_r2
EPSS Score: %3.60

Published: Oct. 10, 2018

Modified: Nov. 21, 2024

Showing 20 of 292488 Results

Browse by Apps

Latest CVE Feed

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

Theme Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable