Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
  • 2.1

    LOW
    CVE-1999-1214

    The asynchronous I/O facility in 4.4 BSD kernel does not check user credentials when setting the recipient of I/O notification, which allows local users to cause a denial of service by using certain ioctl and fcntl calls to cause the signal to be sent to ... Read more

    Affected Products : freebsd netbsd openbsd bsd irix
    • EPSS Score: %0.08
    • Published: Sep. 15, 1997
    • Modified: Apr. 03, 2025
  • 2.1

    LOW
    CVE-2002-1970

    SnortCenter 0.9.5, when configured to push Snort rules, stores the rules in a temporary file with world-readable and world-writable permissions, which allows local users to obtain usernames and passwords for the alert database servers.... Read more

    Affected Products : snortcenter
    • EPSS Score: %0.05
    • Published: Dec. 31, 2002
    • Modified: Apr. 03, 2025
  • 2.1

    LOW
    CVE-2000-0281

    Buffer overflow in the Napster client beta 5 allows remote attackers to cause a denial of service via a long message.... Read more

    Affected Products : napster_client
    • EPSS Score: %0.24
    • Published: Mar. 26, 2000
    • Modified: Apr. 03, 2025
  • 2.1

    LOW
    CVE-2000-0089

    The rdisk utility in Microsoft Terminal Server Edition and Windows NT 4.0 stores registry hive information in a temporary file with permissions that allow local users to read it, aka the "RDISK Registry Enumeration File" vulnerability.... Read more

    Affected Products : windows_nt
    • EPSS Score: %2.92
    • Published: Feb. 04, 2000
    • Modified: Apr. 03, 2025
  • 2.1

    LOW
    CVE-2000-0269

    Emacs 20 does not properly set permissions for a slave PTY device when starting a new subprocess, which allows local users to read or modify communications between Emacs and the subprocess.... Read more

    Affected Products : emacs
    • EPSS Score: %0.07
    • Published: Apr. 18, 2000
    • Modified: Apr. 03, 2025
  • 2.1

    LOW
    CVE-2005-4778

    The powersave daemon in SUSE Linux 10.0 before 20051007 has an unspecified "configuration problem," which allows local users to suspend the computer and possibly perform certain other unauthorized actions.... Read more

    Affected Products : suse_linux suse_sled_beagle
    • EPSS Score: %0.06
    • Published: Dec. 31, 2005
    • Modified: Apr. 03, 2025
  • 2.1

    LOW
    CVE-1999-1010

    An SSH 1.2.27 server allows a client to use the "none" cipher, even if it is not allowed by the server policy.... Read more

    Affected Products : openssh
    • EPSS Score: %0.24
    • Published: Dec. 14, 1999
    • Modified: Apr. 03, 2025
  • 2.1

    LOW
    CVE-2015-1951

    IBM Maximo Asset Management 7.1 through 7.1.1.13, 7.5.0 before 7.5.0.8 IFIX001, and 7.6.0 before 7.6.0.0 IFIX005 does not prevent caching of HTTPS responses, which allows physically proximate attackers to obtain sensitive local-cache information by levera... Read more

    Affected Products : maximo_asset_management
    • EPSS Score: %0.06
    • Published: Jul. 01, 2015
    • Modified: Apr. 12, 2025
  • 2.1

    LOW
    CVE-2001-1518

    RunAs (runas.exe) in Windows 2000 only creates one session instance at a time, which allows local users to cause a denial of service (RunAs hang) by creating a named pipe session with the authentication server without any request for service. NOTE: the v... Read more

    Affected Products : windows_2000
    • EPSS Score: %0.61
    • Published: Dec. 31, 2001
    • Modified: Apr. 03, 2025
  • 2.1

    LOW
    CVE-2000-0139

    Internet Anywhere POP3 Mail Server allows local users to cause a denial of service via a malformed RETR command.... Read more

    Affected Products : internet_anywhere_mail_server
    • EPSS Score: %0.20
    • Published: Dec. 03, 1999
    • Modified: Apr. 03, 2025
  • 2.1

    LOW
    CVE-2002-1764

    acroread in Adobe Acrobat Reader 4.05 on Linux allows local users to overwrite arbitrary files via a symlink attack on temporary files.... Read more

    Affected Products : acrobat_reader
    • EPSS Score: %0.20
    • Published: Dec. 31, 2002
    • Modified: Apr. 03, 2025
  • 2.1

    LOW
    CVE-2000-0019

    IMail POP3 daemon uses weak encryption, which allows local users to read files.... Read more

    Affected Products : imail
    • EPSS Score: %0.02
    • Published: Mar. 04, 1999
    • Modified: Apr. 03, 2025
  • 2.1

    LOW
    CVE-2001-0351

    Microsoft Windows 2000 telnet service allows a local user to make a certain system call that allows the user to terminate a Telnet session and cause a denial of service.... Read more

    Affected Products : windows_2000
    • EPSS Score: %0.44
    • Published: Jul. 21, 2001
    • Modified: Apr. 03, 2025
  • 2.1

    LOW
    CVE-2006-3787

    kpf4ss.exe in Sunbelt Kerio Personal Firewall 4.3.x before 4.3.268 does not properly hook the CreateRemoteThread API function, which allows local users to cause a denial of service (crash) and bypass protection mechanisms by calling CreateRemoteThread.... Read more

    Affected Products : personal_firewall
    • EPSS Score: %0.22
    • Published: Jul. 24, 2006
    • Modified: Apr. 03, 2025
  • 2.1

    LOW
    CVE-2008-2368

    Red Hat Certificate System 7.2 stores passwords in cleartext in the UserDirEnrollment log, the RA wizard installer log, and unspecified other debug log files, and uses weak permissions for these files, which allows local users to discover passwords by rea... Read more

    Affected Products : certificate_system
    • EPSS Score: %0.03
    • Published: Jan. 20, 2009
    • Modified: Apr. 09, 2025
  • 2.1

    LOW
    CVE-2005-2762

    Avaya VPNRemote before 4.2.33 stores credentials in cleartext in process memory, which allows attackers to obtain the VPN user's credentials.... Read more

    Affected Products : vpnremote
    • EPSS Score: %0.07
    • Published: Dec. 31, 2005
    • Modified: Apr. 03, 2025
  • 2.1

    LOW
    CVE-2002-1731

    The System Request menu in IBM AS/400 allows local users to list valid user accounts by viewing the object names that are type USRPRF.... Read more

    Affected Products : os_400
    • EPSS Score: %0.76
    • Published: Dec. 31, 2002
    • Modified: Apr. 03, 2025
  • 2.1

    LOW
    CVE-2008-0889

    Red Hat Directory Server 8.0, when running on Red Hat Enterprise Linux, uses insecure permissions for the redhat-idm-console script, which allows local users to execute arbitrary code by modifying the script.... Read more

    Affected Products : enterprise_linux directory_server
    • EPSS Score: %0.07
    • Published: Mar. 20, 2008
    • Modified: Apr. 09, 2025
  • 2.1

    LOW
    CVE-2002-2105

    Microsoft Windows XP allows local users to prevent the system from booting via a corrupt explorer.exe.manifest file.... Read more

    Affected Products : windows_xp
    • EPSS Score: %0.39
    • Published: Dec. 31, 2002
    • Modified: Apr. 03, 2025
  • 2.1

    LOW
    CVE-2001-0078

    in.mond in Sun Cluster 2.x allows local users to read arbitrary files via a symlink attack on the status file of a host running HA-NFS.... Read more

    Affected Products : cluster
    • EPSS Score: %0.10
    • Published: Feb. 12, 2001
    • Modified: Apr. 03, 2025
Showing 20 of 291728 Results