Latest Published Vulnerabilities CVE

Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.

Latest Critical Actively Exploited Remotely Exploitable

10.0

HIGH

CVE-2015-8969

git-fastclone before 1.0.5 passes user modifiable strings directly to a shell command. An attacker can execute malicious commands by modifying the strings that are passed as arguments to "cd " and "git clone " commands in the library....

Affected Products : git-fastclone git-fastclone
EPSS Score: %2.49

Published: Nov. 03, 2016

Modified: Apr. 12, 2025
10.0

HIGH

CVE-2017-18858

Certain NETGEAR devices are affected by command execution. This affects M4200-10MG-POE+ 12.0.2.11 and earlier, M4300-28G 12.0.2.11 and earlier, M4300-52G 12.0.2.11 and earlier, M4300-28G-POE+ 12.0.2.11 and earlier, M4300-52G-POE+ 12.0.2.11 and earlier, M4...

Affected Products : m4300-28g_firmware m4300-52g_firmware m4300-28g-poe\+_firmware m4300-52g-poe\+_firmware m4300-8x8f_firmware m4300-12x12f_firmware m4300-24x24f_firmware m4300-24x_firmware m4300-48x_firmware m4200-10mg-poe\+_firmware +10 more products
EPSS Score: %2.09

Published: Apr. 28, 2020

Modified: Nov. 21, 2024
10.0

HIGH

CVE-2015-9044

In all Qualcomm products with Android releases from CAF using the Linux kernel, a vulnerability exists in LTE where an assertion can be reached due to an improper bound on the size of a frequency list....

Affected Products : android
EPSS Score: %0.15

Published: Aug. 18, 2017

Modified: Apr. 20, 2025
10.0

HIGH

CVE-2004-0650

UploadServlet in Cisco Collaboration Server (CCS) running ServletExec before 3.0E allows remote attackers to upload and execute arbitrary files via a direct call to the UploadServlet URL....

Affected Products : servletexec
EPSS Score: %1.38

Published: Aug. 06, 2004

Modified: Apr. 03, 2025
10.0

HIGH

CVE-2007-2824

SQL injection vulnerability in paypal.php in AlstraSoft E-Friends 4.21 and earlier allows remote attackers to execute arbitrary SQL commands via the pack parameter in a paypal action for index.php....

Affected Products : e-friends
EPSS Score: %0.89

Published: May. 22, 2007

Modified: Apr. 09, 2025
10.0

HIGH

CVE-2013-2939

Unspecified vulnerability in Citrix CloudPortal Services Manager (aka Cortex) 10.0 before Cumulative Update 3 has unknown impact and attack vectors, a different vulnerability than other CVEs listed in CTX137162....

Affected Products : cloudportal_services_manager
EPSS Score: %0.42

Published: Sep. 12, 2013

Modified: Apr. 11, 2025
10.0

HIGH

CVE-2015-9109

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile and Snapdragon Mobile MDM9625, SD 425, SD 430, SD 450, SD 625, SD 650/52, SD 820, and SD 820A, lack of address argument validation inqsee_fuse_write could lead ...

Affected Products : sd_450_firmware sd_625_firmware sd_820_firmware sd_820a_firmware mdm9625_firmware sd_425_firmware sd_430_firmware sd_650_firmware sd_652_firmware mdm9625 +8 more products
EPSS Score: %0.27

Published: Apr. 18, 2018

Modified: Nov. 21, 2024
10.0

HIGH

CVE-2015-9116

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile and Snapdragon Mobile MDM9625, SD 425, SD 430, SD 450, SD 625, SD 650/52, SD 810, SD 820, and SD 820A, in a QTEE syscall handler, an untrusted pointer dereferen...

Affected Products : sd_450_firmware sd_625_firmware sd_820_firmware sd_820a_firmware mdm9625_firmware sd_425_firmware sd_430_firmware sd_650_firmware sd_652_firmware sd_810_firmware +10 more products
EPSS Score: %0.31

Published: Apr. 18, 2018

Modified: Nov. 21, 2024
10.0

HIGH

CVE-2015-9122

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and Snapdragon Wear MDM9206, MDM9607, MDM9635M, MDM9640, MDM9645, MDM9655, MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 4...

Affected Products : android sd_450_firmware sd_625_firmware sd_820_firmware sd_835_firmware msm8909w_firmware mdm9206_firmware mdm9607_firmware mdm9635m_firmware mdm9640_firmware +47 more products
EPSS Score: %0.38

Published: Apr. 18, 2018

Modified: Nov. 21, 2024
10.0

HIGH

CVE-2015-9135

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and Snapdragon Wear MDM9625, MDM9635M, MDM9640, MDM9645, MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 615/16/SD 415, SD 617, SD 650/52, SD 800, SD 808, and...

Affected Products : android msm8909w_firmware mdm9635m_firmware mdm9640_firmware mdm9645_firmware mdm9625_firmware sd_410_firmware sd_412_firmware sd_210_firmware sd_212_firmware +31 more products
EPSS Score: %0.19

Published: Apr. 18, 2018

Modified: Nov. 21, 2024
10.0

HIGH

CVE-2011-5010

apps/a3/cfg_ethping.cgi in the Ctek SkyRouter 4200 and 4300 allows remote attackers to execute arbitrary commands via shell metacharacters in the PINGADDRESS parameter for a "u" action....

Affected Products : skyrouter
EPSS Score: %84.46

Published: Dec. 25, 2011

Modified: Apr. 11, 2025
10.0

HIGH

CVE-2015-9146

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile MDM9625, MDM9635M, MDM9645, MDM9650, MDM9655, SD 400, SD 800, SD 835, SD 845, SD 850, and SDX20, when QDI read, write, or ioctl are called, the passed-in pointer is...

Affected Products : android sd_835_firmware mdm9650_firmware sdx20_firmware mdm9635m_firmware mdm9655_firmware mdm9625_firmware sd_845_firmware sd_850_firmware sd_800_firmware +11 more products
EPSS Score: %0.22

Published: Apr. 18, 2018

Modified: Nov. 21, 2024
10.0

HIGH

CVE-2015-9151

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile MDM9625, MDM9635M, SD 400, and SD 800, userspace-provided pointer arguments are not validated....

Affected Products : android mdm9635m_firmware mdm9625_firmware sd_800_firmware sd_400_firmware mdm9625 mdm9635m sd_400 sd_800
EPSS Score: %0.22

Published: Apr. 18, 2018

Modified: Nov. 21, 2024
10.0

HIGH

CVE-2015-9170

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon Wear MDM9206, MDM9650, MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, S...

Affected Products : sd_450_firmware sd_625_firmware sd_820_firmware sd_820a_firmware sd_835_firmware mdm9650_firmware msm8909w_firmware mdm9206_firmware sd_410_firmware sd_412_firmware +44 more products
EPSS Score: %0.22

Published: Apr. 18, 2018

Modified: Nov. 21, 2024
10.0

HIGH

CVE-2015-9172

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon Wear MDM9206, MDM9650, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD ...

Affected Products : sd_450_firmware sd_625_firmware sd_820_firmware sd_820a_firmware sd_835_firmware mdm9650_firmware mdm9206_firmware sd_410_firmware sd_412_firmware sd_210_firmware +42 more products
EPSS Score: %0.22

Published: Apr. 18, 2018

Modified: Nov. 21, 2024
10.0

HIGH

CVE-2014-8511

Buffer overflow in an ActiveX control in Atx45.ocx in Schneider Electric ProClima before 6.1.7 allows remote attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-8512. NOTE: this may be clarified later base...

Affected Products : proclima proclima
EPSS Score: %5.35

Published: Dec. 27, 2014

Modified: Apr. 12, 2025
10.0

HIGH

CVE-1999-0587

A WWW server is not running in a restricted file system, e.g. through a chroot, thus allowing access to system-critical data....

Affected Products :
EPSS Score: %0.48

Published: Jan. 01, 1999

Modified: Apr. 03, 2025
10.0

HIGH

CVE-1999-0611

A system-critical Windows NT registry key has an inappropriate value....

Affected Products :
EPSS Score: %0.47

Published: Jan. 01, 1999

Modified: Apr. 03, 2025
10.0

HIGH

CVE-2016-5674

__debugging_center_utils___.php in NUUO NVRmini 2 1.7.5 through 3.0.0, NUUO NVRsolo 1.7.5 through 3.0.0, and NETGEAR ReadyNAS Surveillance 1.1.1 through 1.4.1 allows remote attackers to execute arbitrary PHP code via the log parameter....

Affected Products : readynas_surveillance nvrmini_2 nvrsolo
EPSS Score: %89.38

Published: Aug. 31, 2016

Modified: Apr. 12, 2025
10.0

HIGH

CVE-2017-11634

An issue was discovered on Wireless IP Camera 360 devices. Remote attackers can discover a weakly encoded admin password by connecting to TCP port 9527 and reading the password field of the debugging information, e.g., nTBCS19C corresponds to a password o...

Affected Products : wireless_ip_camera_360
EPSS Score: %2.59

Published: Feb. 26, 2018

Modified: Nov. 21, 2024

Showing 20 of 290943 Results

1
...
138
139
140
141
142
143
144
...
14548

Latest CVE Feed

10.0

10.0

10.0

10.0

10.0

10.0

10.0

10.0

10.0

10.0

10.0

10.0

10.0

10.0

10.0

10.0

10.0

10.0

10.0

10.0

Theme Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable