Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.

Latest Critical Actively Exploited Remotely Exploitable

4.0

MEDIUM

CVE-2014-0411

Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; JRockit R27.7.7 and R28.2.9; Java SE Embedded 7u45; and OpenJDK 7 allows remote attackers to affect confidentiality and integrity via vectors related to JSSE. NOTE: the previous informat...

Affected Products : jdk jre jrockit
Published: Jan. 15, 2014

Modified: Apr. 11, 2025
4.0

MEDIUM

CVE-2014-0412

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.72 and earlier, 5.5.34 and earlier, and 5.6.14 and earlier allows remote authenticated users to affect availability via unknown vectors related to InnoDB....

Affected Products : ubuntu_linux debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation enterprise_linux_server_aus enterprise_linux_server_tus mysql enterprise_linux_eus mariadb
Published: Jan. 15, 2014

Modified: Apr. 11, 2025
4.0

MEDIUM

CVE-2013-2392

Unspecified vulnerability in Oracle MySQL 5.1.68 and earlier, 5.5.30 and earlier, and 5.6.10 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server Optimizer....

Affected Products : enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation mysql enterprise_linux_eus mariadb
Published: Apr. 17, 2013

Modified: Apr. 11, 2025
4.0

MEDIUM

CVE-2014-0392

Unspecified vulnerability in the PeopleSoft Enterprise HRMS component in Oracle PeopleSoft Products 9.1 and 9.2 allows remote authenticated users to affect confidentiality via unknown vectors related to Security....

Affected Products : peoplesoft_products
Published: Jan. 15, 2014

Modified: Apr. 11, 2025
4.0

MEDIUM

CVE-2014-0060

PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 does not properly enforce the ADMIN OPTION restriction, which allows remote authenticated members of a role to add or remove arbitrary users to ...

Affected Products : postgresql
Published: Mar. 31, 2014

Modified: Apr. 12, 2025
4.0

MEDIUM

CVE-2014-0830

Directory traversal vulnerability in the table-export implementation in the OAC component in IBM Financial Transaction Manager (FTM) 2.0 before 2.0.0.3 and 2.1 before 2.1.0.1 allows remote authenticated users to read arbitrary files via a modified pathnam...

Affected Products : financial_transaction_manager
Published: Feb. 01, 2014

Modified: Apr. 11, 2025
4.0

MEDIUM

CVE-2013-6978

The disaster recovery system (DRS) component in Cisco Unified Communications Manager (UCM) 9.1(1) and earlier allows remote authenticated users to obtain sensitive device information by reading "extraneous information" in HTML source code, aka Bug ID CSCu...

Affected Products : unified_communications_manager
Published: Dec. 21, 2013

Modified: Apr. 11, 2025
4.0

MEDIUM

CVE-2013-6731

IBM Netezza Performance Portal 2.x before 2.0.0.3 allows remote authenticated users to change arbitrary passwords via an HTTP POST request....

Affected Products : netezza_performance_portal
Published: Feb. 26, 2014

Modified: Apr. 12, 2025
4.0

MEDIUM

CVE-2013-5891

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.33 and earlier and 5.6.13 and earlier allows remote authenticated users to affect availability via unknown vectors related to Partition....

Affected Products : ubuntu_linux debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation mysql mariadb
Published: Jan. 15, 2014

Modified: Apr. 11, 2025
4.0

MEDIUM

CVE-2011-4347

The kvm_vm_ioctl_assign_device function in virt/kvm/assigned-dev.c in the KVM subsystem in the Linux kernel before 3.1.10 does not verify permission to access PCI configuration space and BAR resources, which allows host OS users to assign PCI devices and ...

Affected Products : linux_kernel
Published: Jun. 08, 2013

Modified: Apr. 11, 2025
4.0

MEDIUM

CVE-2014-0402

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.71 and earlier, 5.5.33 and earlier, and 5.6.13 and earlier allows remote authenticated users to affect availability via unknown vectors related to Locking....

Affected Products : ubuntu_linux debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation enterprise_linux_server_aus enterprise_linux_server_tus mysql enterprise_linux_eus mariadb
Published: Jan. 15, 2014

Modified: Apr. 11, 2025
4.0

MEDIUM

CVE-2014-0008

lib/adminlib.php in Moodle through 2.3.11, 2.4.x before 2.4.8, 2.5.x before 2.5.4, and 2.6.x before 2.6.1 logs cleartext passwords, which allows remote authenticated administrators to obtain sensitive information by reading the Config Changes Report....

Affected Products : moodle
Published: Jan. 20, 2014

Modified: Apr. 11, 2025
4.0

MEDIUM

CVE-2013-7073

The Content Editing Wizards component in TYPO3 4.5.0 through 4.5.31, 4.7.0 through 4.7.16, 6.0.0 through 6.0.11, and 6.1.0 through 6.1.6 does not check permissions, which allows remote authenticated editors to read arbitrary TYPO3 table columns via unspec...

Affected Products : typo3
Published: Dec. 23, 2013

Modified: Apr. 11, 2025
4.0

MEDIUM

CVE-2014-0440

Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.52 and 8.53 allows remote authenticated users to affect availability via vectors related to PIA Core Technology....

Affected Products : peoplesoft_products
Published: Jan. 15, 2014

Modified: Apr. 11, 2025
4.0

MEDIUM

CVE-2016-2947

IBM Rational Collaborative Lifecycle Management 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 before 6.0.2 iFix5; Rational Quality Manager 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 before 6.0.2 iFix5; Rational Team Concert 4.0 ...

Affected Products : rational_doors_next_generation rational_collaborative_lifecycle_management rational_engineering_lifecycle_manager rational_quality_manager rational_rhapsody_design_manager rational_software_architect_design_manager rational_team_concert
Published: Nov. 25, 2016

Modified: Apr. 12, 2025
4.0

MEDIUM

CVE-2015-1488

An unspecified action handler in the management console in Symantec Endpoint Protection Manager (SEPM) 12.1 before 12.1-RU6-MP1 allows remote authenticated users to read arbitrary files via unknown vectors....

Affected Products : endpoint_protection_manager
Published: Aug. 01, 2015

Modified: Apr. 12, 2025
4.0

MEDIUM

CVE-2015-2125

Unspecified vulnerability in HP WebInspect 7.x through 10.4 before 10.4 update 1 allows remote authenticated users to bypass intended access restrictions via unknown vectors....

Affected Products : webinspect
Published: Jun. 07, 2015

Modified: Apr. 12, 2025
4.0

MEDIUM

CVE-2015-2571

Unspecified vulnerability in Oracle MySQL Server 5.5.42 and earlier, and 5.6.23 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server : Optimizer....

Affected Products : ubuntu_linux debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation enterprise_linux_server_aus enterprise_linux_server_tus mysql enterprise_linux_eus mariadb +4 more products
Published: Apr. 16, 2015

Modified: Apr. 12, 2025
4.0

MEDIUM

CVE-2024-3138

** DISPUTED ** A vulnerability was found in francoisjacquet RosarioSIS 11.5.1. It has been rated as problematic. This issue affects some unknown processing of the component Add Portal Note. The manipulation leads to cross site scripting. The attack may be...

Affected Products : rosariosis student_information_system
Published: Apr. 01, 2024

Modified: Nov. 21, 2024
4.0

MEDIUM

CVE-2015-4752

Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect availability via vectors related to Server : I_S....

Affected Products : ubuntu_linux debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation enterprise_linux_server_aus enterprise_linux_server_tus mysql enterprise_linux_eus mariadb +2 more products
Published: Jul. 16, 2015

Modified: Apr. 12, 2025

Showing 20 of 293365 Results

Browse by Apps

Latest CVE Feed

4.0

4.0

4.0

4.0

4.0

4.0

4.0

4.0

4.0

4.0

4.0

4.0

4.0

4.0

4.0

4.0

4.0

4.0

4.0

4.0

Theme Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable