Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 9.4

    CRITICAL
    CVE-2025-53825

    Dokploy is a free, self-hostable Platform as a Service (PaaS). Prior to version 0.24.3, an unauthenticated preview deployment vulnerability in Dokploy allows any user to execute arbitrary code and access sensitive environment variables by simply opening a... Read more

    Affected Products :
    • Published: Jul. 14, 2025
    • Modified: Jul. 15, 2025
    • Vuln Type: Authentication

  • 9.4

    HIGH
    CVE-2005-4332

    Cisco Clean Access 3.5.5 and earlier on the Secure Smart Manager allows remote attackers to bypass authentication and cause a denial of service or upload files via direct requests to obsolete JSP files including (1) admin/uploadclient.jsp, (2) apply_firmw... Read more

    • EPSS Score: %11.06
    • Published: Dec. 17, 2005
    • Modified: Apr. 03, 2025

  • 9.4

    HIGH
    CVE-2007-2170

    The APPLSYS.FND_DM_NODES package in Oracle E-Business Suite does not check for valid sessions, which allows remote attackers to delete arbitrary nodes. NOTE: due to lack of details from Oracle, it is not clear whether this issue is related to other CVE i... Read more

    Affected Products : e-business_suite
    • EPSS Score: %1.89
    • Published: Apr. 24, 2007
    • Modified: Apr. 09, 2025

  • 9.4

    HIGH
    CVE-2007-2439

    Caucho Resin Professional 3.1.0 and Caucho Resin 3.1.0 and earlier for Windows allows remote attackers to cause a denial of service (device hang) and read data from a COM or LPT device via a DOS device name with an arbitrary extension.... Read more

    Affected Products : resin resin
    • EPSS Score: %1.56
    • Published: May. 16, 2007
    • Modified: Apr. 09, 2025

  • 9.4

    HIGH
    CVE-2007-3192

    admin/setup.php in Just For Fun Network Management System (JFFNMS) 0.8.3 allows remote attackers to read and modify configuration settings via a direct request.... Read more

    • EPSS Score: %2.86
    • Published: Jun. 12, 2007
    • Modified: Apr. 09, 2025

  • 9.4

    HIGH
    CVE-2014-2634

    Unspecified vulnerability in the server in HP Service Manager (SM) 7.21 and 9.x before 9.34 allows remote attackers to bypass intended access restrictions, and modify data or cause a denial of service, via unknown vectors.... Read more

    Affected Products : service_manager
    • EPSS Score: %6.59
    • Published: Aug. 23, 2014
    • Modified: Apr. 12, 2025

  • 9.4

    HIGH
    CVE-2014-8384

    The InFocus IN3128HD projector with firmware 0.26 does not restrict access to cgi-bin/webctrl.cgi.elf, which allows remote attackers to modify the DHCP server and device IP configuration, reboot the device, change the device name, and have other unspecifi... Read more

    Affected Products : in3128hd_firmware in3128hd
    • EPSS Score: %1.06
    • Published: May. 18, 2015
    • Modified: Apr. 12, 2025

  • 9.4

    HIGH
    CVE-2014-9605

    WebUpgrade in Netsweeper before 3.1.10, 4.0.x before 4.0.9, and 4.1.x before 4.1.2 allows remote attackers to bypass authentication and create a system backup tarball, restart the server, or stop the filters on the server via a ' (single quote) character ... Read more

    Affected Products : netsweeper
    • EPSS Score: %8.69
    • Published: Sep. 04, 2015
    • Modified: Apr. 12, 2025

  • 9.4

    HIGH
    CVE-2018-14916

    LOYTEC LGATE-902 6.3.2 devices allow Arbitrary file deletion.... Read more

    Affected Products : lgate-902_firmware lgate-902
    • EPSS Score: %68.25
    • Published: Jun. 28, 2019
    • Modified: Nov. 21, 2024

  • 9.4

    HIGH
    CVE-2019-13625

    NSA Ghidra before 9.0.1 allows XXE when a project is opened or restored, or a tool is imported, as demonstrated by a project.prp file.... Read more

    Affected Products : ghidra
    • EPSS Score: %0.32
    • Published: Jul. 17, 2019
    • Modified: Nov. 21, 2024

  • 9.4

    HIGH
    CVE-2018-14062

    The COSPAS-SARSAT protocol allows remote attackers to forge messages, replay encrypted messages, conduct denial of service attacks, and send private messages (unrelated to distress alerts) via a crafted 406 MHz digital signal.... Read more

    Affected Products : cospas-sarsat_system
    • EPSS Score: %0.76
    • Published: Aug. 15, 2019
    • Modified: Nov. 21, 2024

  • 9.4

    CRITICAL
    CVE-2019-16383

    MOVEit.DMZ.WebApi.dll in Progress MOVEit Transfer 2018 SP2 before 10.2.4, 2019 before 11.0.2, and 2019.1 before 11.1.1 allows an unauthenticated attacker to gain unauthorized access to the database. Depending on the database engine being used (MySQL, Micr... Read more

    Affected Products : moveit_transfer
    • EPSS Score: %1.28
    • Published: Sep. 24, 2019
    • Modified: Nov. 21, 2024

  • 9.4

    HIGH
    CVE-2019-10579

    Buffer over-read can occur while playing the video clip which is not standard in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music,... Read more

    • EPSS Score: %0.24
    • Published: Jan. 21, 2020
    • Modified: Nov. 21, 2024

  • 9.4

    HIGH
    CVE-2019-10552

    Multiple Buffer Over-read issue can happen due to improper length checks while decoding Service Reject/RAU Reject/PTMSI Realloc cmd in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdr... Read more

    • EPSS Score: %0.24
    • Published: Mar. 05, 2020
    • Modified: Nov. 21, 2024

  • 9.4

    HIGH
    CVE-2019-10553

    Multiple Read overflows due to improper length checks while decoding authentication in Cs domain/RAU Reject and TC cmd in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdrago... Read more

    • EPSS Score: %0.22
    • Published: Mar. 05, 2020
    • Modified: Nov. 21, 2024

  • 9.4

    HIGH
    CVE-2019-10554

    Multiple Read overflows issue due to improper length check while decoding Identity Request in CSdomain/Authentication Reject in CS domain/ PRAU accept/while logging DL message in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Con... Read more

    • EPSS Score: %0.22
    • Published: Mar. 05, 2020
    • Modified: Nov. 21, 2024

  • 9.4

    HIGH
    CVE-2019-14082

    Potential buffer over-read due to lack of bound check of memory offset passed in WLAN firmware in Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Inf... Read more

    • EPSS Score: %0.24
    • Published: Mar. 05, 2020
    • Modified: Nov. 21, 2024

  • 9.4

    CRITICAL
    CVE-2020-10265

    Universal Robots Robot Controllers Version CB2 SW Version 1.4 upwards, CB3 SW Version 3.0 and upwards, e-series SW Version 5.0 and upwards expose a service called DashBoard server at port 29999 that allows for control over core robot functions like starti... Read more

    Affected Products : ur_software ur10 ur3 ur5 ur10e ur3e ur5e
    • EPSS Score: %0.36
    • Published: Apr. 06, 2020
    • Modified: Nov. 21, 2024

  • 9.4

    HIGH
    CVE-2019-10610

    Possible buffer over read when trying to process SDP message Video media line with frame-size attribute in video Media line in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snap... Read more

    • EPSS Score: %0.24
    • Published: Apr. 16, 2020
    • Modified: Nov. 21, 2024

  • 9.4

    HIGH
    CVE-2020-3652

    Possible buffer over-read issue in windows x86 wlan driver function while processing beacon or request frame due to lack of check of length of variable received. in Snapdragon Compute, Snapdragon Connectivity in MSM8998, QCA6390, SC7180, SC8180X, SDM850... Read more

    • EPSS Score: %0.24
    • Published: Apr. 16, 2020
    • Modified: Nov. 21, 2024
Showing 20 of 291316 Results