Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 10.0

    HIGH
    CVE-2007-1955

    Multiple stack-based buffer overflows in the SignKorea SKCrypAX ActiveX control module 5.4.1.2 allow remote attackers to execute arbitrary code via a long string in unspecified arguments to the (1) DownloadCert, (2) DecryptFileByKey, and (3) EncryptFileBy... Read more

    Affected Products : skcommax_activex_control
    • EPSS Score: %5.45
    • Published: Apr. 11, 2007
    • Modified: Apr. 09, 2025

  • 10.0

    CRITICAL
    CVE-2017-7664

    Uploaded XML documents were not correctly validated in Apache OpenMeetings 3.1.0.... Read more

    Affected Products : openmeetings
    • EPSS Score: %0.63
    • Published: Jul. 17, 2017
    • Modified: Apr. 20, 2025

  • 10.0

    HIGH
    CVE-2012-1239

    The TopAccess web-based management interface on TOSHIBA TEC e-Studio multi-function peripheral (MFP) devices with firmware 30x through 302, 35x through 354, and 4xx through 421 allows remote attackers to bypass authentication and obtain administrative pri... Read more

    • EPSS Score: %15.08
    • Published: Apr. 06, 2012
    • Modified: Apr. 11, 2025

  • 10.0

    HIGH
    CVE-1999-0119

    Windows NT 4.0 beta allows users to read and delete shares.... Read more

    Affected Products : windows_nt
    • EPSS Score: %11.70
    • Published: Jan. 19, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0124

    Vulnerabilities in UMN gopher and gopher+ versions 1.12 and 2.0x allow an intruder to read any files that can be accessed by the gopher daemon.... Read more

    Affected Products : gopherd
    • EPSS Score: %0.48
    • Published: Aug. 09, 1993
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2017-6526

    An issue was discovered in dnaTools dnaLIMS 4-2015s13. dnaLIMS is vulnerable to unauthenticated command execution through an improperly protected administrative web shell (cgi-bin/dna/sysAdmin.cgi POST requests).... Read more

    Affected Products : dnalims
    • EPSS Score: %83.73
    • Published: Mar. 09, 2017
    • Modified: Apr. 20, 2025

  • 10.0

    HIGH
    CVE-1999-0696

    Buffer overflow in CDE Calendar Manager Service Daemon (rpc.cmsd).... Read more

    Affected Products : solaris hp-ux sunos
    • EPSS Score: %5.58
    • Published: Jul. 01, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    CRITICAL
    CVE-2024-31115

    Unrestricted Upload of File with Dangerous Type vulnerability in QuanticaLabs Chauffeur Taxi Booking System for WordPress.This issue affects Chauffeur Taxi Booking System for WordPress: from n/a through 7.2. ... Read more

    Affected Products :
    • Published: Mar. 31, 2024
    • Modified: Nov. 21, 2024

  • 10.0

    HIGH
    CVE-2007-1015

    SQL injection vulnerability in HaberDetay.asp in Aktueldownload Haber script allows remote attackers to execute arbitrary SQL commands via the id parameter.... Read more

    Affected Products : aktueldownload_haber_script
    • EPSS Score: %0.26
    • Published: Feb. 21, 2007
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-1999-1241

    Internet Explorer, with a security setting below Medium, allows remote attackers to execute arbitrary commands via a malicious web page that uses the FileSystemObject ActiveX object.... Read more

    Affected Products : internet_explorer
    • EPSS Score: %30.28
    • Published: May. 06, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0515

    The snmpd.conf configuration file for the SNMP daemon (snmpd) in HP-UX 11.0 is world writable, which allows local users to modify SNMP configuration or gain privileges.... Read more

    Affected Products : hp-ux
    • EPSS Score: %1.47
    • Published: Jun. 07, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2018-16803

    In CIMTechniques CIMScan 6.x through 6.2, the SOAP WSDL parser allows attackers to execute SQL code.... Read more

    Affected Products : cimscan
    • EPSS Score: %0.62
    • Published: Jan. 10, 2019
    • Modified: Nov. 21, 2024

  • 10.0

    HIGH
    CVE-1999-1588

    Buffer overflow in nlps_server in Sun Solaris x86 2.4, 2.5, and 2.5.1 allows remote attackers to execute arbitrary code as root via a long string beginning with "NLPS:002:002:" to the listen (aka System V listener) port, TCP port 2766.... Read more

    Affected Products : solaris
    • EPSS Score: %6.85
    • Published: Dec. 31, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2016-0815

    The MPEG4Source::fragmentedRead function in MPEG4Extractor.cpp in libstagefright in mediaserver in Android 4.x before 4.4.4, 5.x before 5.1.1 LMY49H, and 6.x before 2016-03-01 allows remote attackers to execute arbitrary code or cause a denial of service ... Read more

    Affected Products : android
    • EPSS Score: %1.90
    • Published: Mar. 12, 2016
    • Modified: Apr. 12, 2025

  • 10.0

    HIGH
    CVE-2000-0166

    Buffer overflow in the InterAccess telnet server TelnetD allows remote attackers to execute commands via a long login name.... Read more

    Affected Products : interaccess_telnetd_server
    • EPSS Score: %5.00
    • Published: Feb. 21, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2004-0962

    Apple Remote Desktop Client 1.2.4 executes a GUI application as root when it is started by an Apple Remote Desktop Administrator application, which allows remote authenticated users to execute arbitrary code when loginwindow is active via Fast User Switch... Read more

    Affected Products : apple_remote_desktop
    • EPSS Score: %1.78
    • Published: Feb. 09, 2005
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0551

    The file transfer mechanism in Danware NetOp 6.0 does not provide authentication, which allows remote attackers to access and modify arbitrary files.... Read more

    Affected Products : netop
    • EPSS Score: %0.71
    • Published: May. 23, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2020-8636

    An issue was discovered in OpServices OpMon 9.3.2 that allows Remote Code Execution .... Read more

    Affected Products : opmon
    • EPSS Score: %4.75
    • Published: Feb. 06, 2020
    • Modified: Nov. 21, 2024

  • 10.0

    HIGH
    CVE-2001-0218

    Format string vulnerability in mars_nwe 0.99.pl19 allows remote attackers to execute arbitrary commands.... Read more

    Affected Products : mars_nwe
    • EPSS Score: %2.32
    • Published: May. 03, 2001
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2020-3280

    A vulnerability in the Java Remote Management Interface of Cisco Unified Contact Center Express (Unified CCX) could allow an unauthenticated, remote attacker to execute arbitrary code on an affected device. The vulnerability is due to insecure deserializa... Read more

    Affected Products : unified_contact_center_express
    • EPSS Score: %6.34
    • Published: May. 22, 2020
    • Modified: Nov. 21, 2024
Showing 20 of 291400 Results