Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 2.1

    LOW
    CVE-2009-2489

    Unspecified vulnerability in the utdmsession program in Sun Ray Server Software (SRSS) 4.0 allows local users to access the sessions of arbitrary users via unknown vectors.... Read more

    Affected Products : ray_server_software
    • Published: Jul. 16, 2009
    • Modified: Apr. 09, 2025

  • 2.1

    LOW
    CVE-1999-0460

    Buffer overflow in Linux autofs module through long directory names allows local users to perform a denial of service.... Read more

    Affected Products : linux_kernel
    • Published: Feb. 19, 1999
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-1999-0480

    Local attackers can conduct a denial of service in Midnight Commander 4.x with a symlink attack.... Read more

    Affected Products : midnight_commander
    • Published: Apr. 01, 1999
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-1999-0464

    Local users can perform a denial of service in Tripwire 1.2 and earlier using long filenames.... Read more

    Affected Products : tripwire
    • Published: Jan. 04, 1999
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-1999-0451

    Denial of service in Linux 2.0.36 allows local users to prevent any server from listening on any non-privileged port.... Read more

    Affected Products : linux_kernel
    • Published: Jan. 19, 1999
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-1999-0322

    The open() function in FreeBSD allows local attackers to write to arbitrary files.... Read more

    Affected Products : freebsd
    • Published: Oct. 29, 1997
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2008-2101

    The VMware Consolidated Backup (VCB) command-line utilities in VMware ESX 3.0.1 through 3.0.3 and ESX 3.5 place a password on the command line, which allows local users to obtain sensitive information by listing the process.... Read more

    Affected Products : esx esx
    • Published: Sep. 03, 2008
    • Modified: Apr. 09, 2025

  • 2.1

    LOW
    CVE-2005-2076

    HP Version Control Repository Manager (VCRM) before 2.1.1.730 does not properly handle the "@" character in a proxy password, which could allow attackers with physical access to obtain portions of the password when it is displayed to the screen.... Read more

    • Published: Jun. 29, 2005
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2002-0087

    bindsock in Lotus Domino 5.07 on Solaris allows local users to create arbitrary files via a symlink attack on temporary files.... Read more

    Affected Products : lotus_domino domino
    • Published: Mar. 15, 2002
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2000-0263

    The X font server xfs in Red Hat Linux 6.x allows an attacker to cause a denial of service via a malformed request.... Read more

    Affected Products : linux
    • Published: Apr. 16, 2000
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2002-0120

    Apple Palm Desktop 4.0b76 and 4.0b77 creates world-readable backup files and folders when a hotsync is performed, which could allow a local user to obtain sensitive information.... Read more

    Affected Products : palm_desktop
    • Published: Mar. 25, 2002
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2001-1578

    Unknown vulnerability in SCO OpenServer 5.0.6 and earlier allows local users to modify critical information such as certain CPU registers and segment descriptors.... Read more

    Affected Products : openserver
    • Published: Dec. 31, 2001
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2000-0275

    CRYPTOCard CryptoAdmin for PalmOS uses weak encryption to store a user's PIN number, which allows an attacker with access to the .PDB file to generate valid PT-1 tokens after cracking the PIN.... Read more

    Affected Products : cryptoadmin
    • Published: Apr. 10, 2000
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2000-0462

    ftpd in NetBSD 1.4.2 does not properly parse entries in /etc/ftpchroot and does not chroot the specified users, which allows those users to access other files outside of their home directory.... Read more

    Affected Products : netbsd
    • Published: May. 28, 2000
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2001-1548

    ZoneAlarm 2.1 through 2.6 and ZoneAlarm Pro 2.4 and 2.6 allows local users to bypass filtering via non-standard TCP packets created with non-Windows protocol adapters.... Read more

    Affected Products : zonealarm
    • Published: Dec. 31, 2001
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2002-1786

    SGI IRIX 6.5 through 6.5.14 applies a umask of 022 to root core dumps, which allows local users to read the core dumps and possibly obtain sensitive information.... Read more

    Affected Products : irix
    • Published: Dec. 31, 2002
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2008-3426

    Unspecified vulnerability in the Solaris Platform Information and Control Library daemon (picld) in Sun Solaris 8 through 10, and OpenSolaris builds snv_01 through snv_95, allows local users to cause a denial of service via unknown vectors that prevent op... Read more

    Affected Products : solaris opensolaris sunos
    • Published: Jul. 31, 2008
    • Modified: Apr. 09, 2025

  • 2.1

    LOW
    CVE-2000-0402

    The Mixed Mode authentication capability in Microsoft SQL Server 7.0 stores the System Administrator (sa) account in plaintext in a log file which is readable by any user, aka the "SQL Server 7.0 Service Pack Password" vulnerability.... Read more

    Affected Products : sql_server
    • Published: May. 30, 2000
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2001-1549

    Tiny Personal Firewall 1.0 and 2.0 allows local users to bypass filtering via non-standard TCP packets created with non-Windows protocol adapters.... Read more

    Affected Products : tiny_personal_firewall
    • Published: Dec. 31, 2001
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2001-1518

    RunAs (runas.exe) in Windows 2000 only creates one session instance at a time, which allows local users to cause a denial of service (RunAs hang) by creating a named pipe session with the authentication server without any request for service. NOTE: the v... Read more

    Affected Products : windows_2000
    • Published: Dec. 31, 2001
    • Modified: Apr. 03, 2025
Showing 20 of 293350 Results