Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 10.0

    HIGH
    CVE-2009-3112

    Unspecified vulnerability in OXID eShop Professional, Enterprise, and Community Edition before 4.1.0 allows remote attackers to gain administrator privileges and access the shop backend via a crafted parameter.... Read more

    • EPSS Score: %0.77
    • Published: Sep. 09, 2009
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2009-3177

    Unspecified vulnerability in Kaspersky Online Scanner 7.0 has unknown impact and attack vectors, as demonstrated by a certain module in VulnDisco Pack Professional 8.8, (1) "Kaspersky Online Antivirus Scanner 7.0 exploit (Linux)" and (2) "Kaspersky Online... Read more

    • EPSS Score: %0.45
    • Published: Sep. 11, 2009
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2009-3819

    Unspecified vulnerability in the Random Images (maag_randomimage) extension 1.6.4 and earlier for TYPO3 allows remote attackers to execute arbitrary shell commands via unspecified vectors.... Read more

    Affected Products : typo3 maag_randomimage
    • EPSS Score: %2.08
    • Published: Oct. 28, 2009
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2009-4188

    HP Operations Dashboard has a default password of j2deployer for the j2deployer account, which allows remote attackers to execute arbitrary code via a session that uses the manager role to conduct unrestricted file upload attacks against the /manager serv... Read more

    Affected Products : operations_dashboard
    • EPSS Score: %85.99
    • Published: Dec. 03, 2009
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2010-0361

    Stack-based buffer overflow in the WebDAV implementation in webservd in Sun Java System Web Server (aka SJWS) 7.0 Update 7 allows remote attackers to cause a denial of service (daemon crash) and possibly have unspecified other impact via a long URI in an ... Read more

    Affected Products : java_system_web_server
    • EPSS Score: %88.39
    • Published: Jan. 20, 2010
    • Modified: Apr. 11, 2025

  • 10.0

    HIGH
    CVE-2010-0918

    Multiple unspecified vulnerabilities in the UltraLite functionality in IBM Lotus iNotes (aka Domino Web Access or DWA) before 229.281 for Domino 8.0.2 FP4 have unknown impact and attack vectors.... Read more

    • EPSS Score: %0.54
    • Published: Mar. 03, 2010
    • Modified: Apr. 11, 2025

  • 10.0

    HIGH
    CVE-2010-0570

    Cisco Digital Media Manager (DMM) 5.0.x and 5.1.x has a default password for the Tomcat administration account, which makes it easier for remote attackers to execute arbitrary code via a crafted web application, aka Bug ID CSCta03378.... Read more

    Affected Products : digital_media_manager
    • EPSS Score: %2.93
    • Published: Mar. 05, 2010
    • Modified: Apr. 11, 2025

  • 10.0

    HIGH
    CVE-2010-1041

    Unspecified vulnerability in the single sign-on functionality in the Web Services implementation in IBM DB2 Content Manager (CM) Toolkit 8.3 before FP13 on z/OS and DB2 Information Integrator for Content 8.3 before FP13 has unknown impact and remote attac... Read more

    Affected Products : db2_content_manager
    • EPSS Score: %1.70
    • Published: Mar. 23, 2010
    • Modified: Apr. 11, 2025

  • 10.0

    HIGH
    CVE-2010-1228

    Multiple race conditions in the sandbox infrastructure in Google Chrome before 4.1.249.1036 have unspecified impact and attack vectors.... Read more

    Affected Products : chrome
    • EPSS Score: %0.25
    • Published: Apr. 01, 2010
    • Modified: Apr. 11, 2025

  • 10.0

    HIGH
    CVE-2010-1356

    Unspecified vulnerability on the TANDBERG Video Communication Server (VCS) before X5.0 allows remote attackers to execute arbitrary code via unknown vectors, aka Reference ID 69773.... Read more

    • EPSS Score: %2.37
    • Published: Apr. 13, 2010
    • Modified: Apr. 11, 2025

  • 10.0

    HIGH
    CVE-2010-2276

    The default configuration of the build process in Dojo 0.4.x before 0.4.4, 1.0.x before 1.0.3, 1.1.x before 1.1.2, 1.2.x before 1.2.4, 1.3.x before 1.3.3, and 1.4.x before 1.4.2 has the copyTests=true and mini=false options, which makes it easier for remo... Read more

    Affected Products : dojo
    • EPSS Score: %3.51
    • Published: Jun. 15, 2010
    • Modified: Apr. 11, 2025

  • 10.0

    HIGH
    CVE-2010-2351

    Stack-based buffer overflow in the CIFS.NLM driver in Netware SMB 1.0 for Novell Netware 6.5 SP8 and earlier allows remote attackers to execute arbitrary code via a Sessions Setup AndX packet with a long AccountName.... Read more

    Affected Products : netware netware
    • EPSS Score: %14.48
    • Published: Jun. 21, 2010
    • Modified: Apr. 11, 2025

  • 10.0

    HIGH
    CVE-2010-2976

    The controller in Cisco Unified Wireless Network (UWN) Solution 7.x through 7.0.98.0 has (1) a default SNMP read-only community of public, (2) a default SNMP read-write community of private, and a value of "default" for the (3) SNMP v3 username, (4) SNMP ... Read more

    • EPSS Score: %2.26
    • Published: Aug. 10, 2010
    • Modified: Apr. 11, 2025

  • 10.0

    HIGH
    CVE-2010-3032

    Integer overflow in the OBGIOPServerWorker::extractHeader function in the ebus-3-3-2-6.dll module in SAP Crystal Reports 2008 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a GIOP packet with a crafted... Read more

    Affected Products : crystal_reports
    • EPSS Score: %25.56
    • Published: Aug. 17, 2010
    • Modified: Apr. 11, 2025

  • 10.0

    HIGH
    CVE-2010-3111

    Google Chrome before 6.0.472.53 does not properly mitigate an unspecified flaw in the Windows kernel, which has unknown impact and attack vectors, a different vulnerability than CVE-2010-2897.... Read more

    Affected Products : chrome
    • EPSS Score: %0.30
    • Published: Aug. 24, 2010
    • Modified: Apr. 11, 2025

  • 10.0

    HIGH
    CVE-2010-3398

    Unspecified vulnerability in the webcontainer implementation in IBM Lotus Sametime Connect 8.5.1 before CF1 has unknown impact and attack vectors, aka SPRs LXUU87S57H and LXUU87S93W.... Read more

    • EPSS Score: %0.51
    • Published: Sep. 15, 2010
    • Modified: Apr. 11, 2025

  • 10.0

    HIGH
    CVE-2010-3759

    FastBackMount.exe in the Mount service in IBM Tivoli Storage Manager (TSM) FastBack 5.5.0.0 through 5.5.6.0 and 6.1.0.0 through 6.1.0.1 writes a certain value to a memory location specified by a UDP packet field, which allows remote attackers to execute a... Read more

    Affected Products : tivoli_storage_manager_fastback
    • EPSS Score: %8.46
    • Published: Oct. 05, 2010
    • Modified: Apr. 11, 2025

  • 10.0

    HIGH
    CVE-2010-4218

    Unspecified vulnerability in Web Services in IBM ENOVIA 6 has unknown impact and attack vectors, related to a system that becomes "exposed to the internet."... Read more

    Affected Products : enovia
    • EPSS Score: %1.33
    • Published: Nov. 09, 2010
    • Modified: Apr. 11, 2025

  • 10.0

    HIGH
    CVE-2010-4232

    The web-based administration interface on the Camtron CMNC-200 Full HD IP Camera and TecVoz CMNC-200 Megapixel IP Camera with firmware 1.102A-008 allows remote attackers to bypass authentication via a // (slash slash) at the beginning of a URI, as demonst... Read more

    • EPSS Score: %6.72
    • Published: Nov. 17, 2010
    • Modified: Apr. 11, 2025

  • 10.0

    HIGH
    CVE-2010-4116

    Unspecified vulnerability in HP StorageWorks Storage Mirroring 5.x before 5.2.2.1771.2 allows remote attackers to execute arbitrary code via unknown vectors.... Read more

    Affected Products : storageworks_storage_mirroring
    • EPSS Score: %17.39
    • Published: Dec. 22, 2010
    • Modified: Apr. 11, 2025
Showing 20 of 292719 Results