Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 9.3

    HIGH
    CVE-2013-5990

    Unspecified vulnerability in JustSystems Ichitaro 2006 through 2011; Ichitaro Government 6, 7, and 2006 through 2010; Ichitaro 2011 Sou; Ichitaro 2012 Shou; Ichitaro 2013 Gen and Gen Trial Edition; Ichitaro Pro; Ichitaro Pro 2 and Pro 2 Trial Edition; Ich... Read more

    • EPSS Score: %5.13
    • Published: Nov. 13, 2013
    • Modified: Apr. 11, 2025

  • 9.3

    HIGH
    CVE-2013-6874

    Stack-based buffer overflow in Vortex Light Alloy before 4.7.4 allows remote attackers to execute arbitrary code via a long URL in a .m3u file.... Read more

    Affected Products : light_alloy
    • EPSS Score: %35.15
    • Published: Nov. 26, 2013
    • Modified: Apr. 11, 2025

  • 9.3

    HIGH
    CVE-2013-7283

    Race condition in the libreswan.spec files for Red Hat Enterprise Linux (RHEL) and Fedora packages in libreswan 3.6 has unspecified impact and attack vectors, involving the /var/tmp/libreswan-nss-pwd temporary file.... Read more

    Affected Products : libreswan
    • EPSS Score: %0.33
    • Published: Jan. 09, 2014
    • Modified: Apr. 11, 2025

  • 9.3

    HIGH
    CVE-2013-3482

    Stack-based buffer overflow in the rf_report_error function in ermapper_u.dll in Intergraph ERDAS ER Viewer before 13.0.1.1301 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a long string in an ERS f... Read more

    Affected Products : erdas_er_viewer
    • EPSS Score: %65.74
    • Published: Jan. 19, 2014
    • Modified: Apr. 11, 2025

  • 9.3

    HIGH
    CVE-2013-3483

    Stack-based buffer overflow in ermapper_u.dll in Intergraph ERDAS ER Viewer before 13.0.1.1301 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted ERS file.... Read more

    Affected Products : erdas_er_viewer
    • EPSS Score: %7.61
    • Published: Jan. 19, 2014
    • Modified: Apr. 11, 2025

  • 9.3

    HIGH
    CVE-2013-4979

    Buffer overflow in the gldll32.dll module in EPS Viewer 3.2 and earlier allows remote attackers to execute arbitrary code via a crafted EPS file.... Read more

    Affected Products : eps_viewer
    • EPSS Score: %11.71
    • Published: Jan. 31, 2014
    • Modified: Apr. 11, 2025

  • 9.3

    HIGH
    CVE-2013-4978

    Stack-based buffer overflow in AloahaPDFViewer 5.0.0.7 and earlier in Aloaha PDF Suite FREE allows remote attackers to execute arbitrary code via a crafted PDF file.... Read more

    • EPSS Score: %34.66
    • Published: Feb. 05, 2014
    • Modified: Apr. 11, 2025

  • 9.3

    HIGH
    CVE-2014-0980

    Buffer overflow in Poster Software PUBLISH-iT 3.6d allows remote attackers to execute arbitrary code via a crafted PUI file.... Read more

    Affected Products : publish_it
    • EPSS Score: %82.16
    • Published: Feb. 11, 2014
    • Modified: Apr. 11, 2025

  • 9.3

    HIGH
    CVE-2013-6949

    The Belkin WeMo Home Automation firmware before 3949 does not properly use the STUN and TURN protocols, which allows remote attackers to hijack connections and possibly have unspecified other impact by leveraging access to a single WeMo device.... Read more

    Affected Products : wemo_home_automation_firmware
    • EPSS Score: %0.62
    • Published: Feb. 22, 2014
    • Modified: Apr. 11, 2025

  • 9.3

    HIGH
    CVE-2013-2642

    Sophos Web Appliance before 3.7.8.2 allows (1) remote attackers to execute arbitrary commands via shell metacharacters in the client-ip parameter to the Block page, when using the user_workstation variable in a customized template, and remote authenticate... Read more

    • EPSS Score: %18.09
    • Published: Mar. 18, 2014
    • Modified: Apr. 12, 2025

  • 9.3

    HIGH
    CVE-2014-2087

    Stack-based buffer overflow in the CDownloads_Deleted::UpdateDownload function in Downloads_Deleted.cpp in Free Download Manager 3.9.3 build 1360, 3.8 build 1173, 3.0 build 852, and earlier allows user-assisted remote attackers to execute arbitrary code v... Read more

    Affected Products : free_download_manager
    • EPSS Score: %46.39
    • Published: Mar. 18, 2014
    • Modified: Apr. 12, 2025

  • 9.3

    HIGH
    CVE-2013-0733

    Untrusted search path vulnerability in Corel PaintShop Pro X5 and X6 16.0.0.113, 15.2.0.2, and earlier allows local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is located in the same folder as a .jp... Read more

    Affected Products : paintshop_pro_x5 paintshop_pro_x6
    • EPSS Score: %7.88
    • Published: Jun. 05, 2014
    • Modified: Apr. 12, 2025

  • 9.3

    HIGH
    CVE-2014-3911

    Samsung iPOLiS Device Manager before 1.8.7 allow remote attackers to execute arbitrary code via unspecified values to the (1) Start, (2) ChangeControlLocalName, (3) DeleteDeviceProfile, (4) FrameAdvanceReader, or other unknown method in the XNSSDKDEVICE.X... Read more

    Affected Products : ipolis_device_manager
    • EPSS Score: %11.41
    • Published: Jun. 11, 2014
    • Modified: Apr. 12, 2025

  • 9.3

    HIGH
    CVE-2014-5501

    Stack-based buffer overflow in the diagnose service in the Sophos Cyberoam appliances with CyberoamOS before 10.6.1 GA allows remote attackers to execute arbitrary code via a crafted webpage or file.... Read more

    Affected Products : cyberoam_os
    • EPSS Score: %6.66
    • Published: Oct. 07, 2014
    • Modified: Apr. 12, 2025

  • 9.3

    HIGH
    CVE-2014-7178

    Enalean Tuleap before 7.5.99.6 allows remote attackers to execute arbitrary commands via the User-Agent header, which is provided to the passthru PHP function.... Read more

    Affected Products : tuleap
    • EPSS Score: %10.01
    • Published: Nov. 28, 2014
    • Modified: Apr. 12, 2025

  • 9.3

    HIGH
    CVE-2014-6119

    IBM Security AppScan Enterprise 8.5 before 8.5 IFix 002, 8.6 before 8.6 IFix 004, 8.7 before 8.7 IFix 004, 8.8 before 8.8 iFix 003, 9.0 before 9.0.0.1 iFix 003, and 9.0.1 before 9.0.1 iFix 001 allows remote attackers to execute arbitrary code via a crafte... Read more

    • EPSS Score: %9.94
    • Published: Dec. 23, 2014
    • Modified: Apr. 12, 2025

  • 9.3

    HIGH
    CVE-2011-5295

    Buffer overflow in the Download method in a certain ActiveX control in MDIEEx.dll in Gogago YouTube Video Converter 1.1.6 allows remote attackers to execute arbitrary code via a long argument.... Read more

    Affected Products : gogago_youtube_video_converter
    • EPSS Score: %13.24
    • Published: Jan. 01, 2015
    • Modified: Apr. 12, 2025

  • 9.3

    HIGH
    CVE-2014-9574

    Directory traversal vulnerability in install.php in FluxBB before 1.5.8 allows remote attackers to include and execute arbitrary local install.php files via a .. (dot dot) in the install_lang parameter.... Read more

    Affected Products : fluxbb
    • EPSS Score: %1.24
    • Published: Feb. 03, 2015
    • Modified: Apr. 12, 2025

  • 9.3

    HIGH
    CVE-2015-3621

    Untrusted search path vulnerability in SAP Enterprise Central Component (ECC) allows local users to gain privileges via a Trojan horse program.... Read more

    Affected Products : enterprise_central_component
    • EPSS Score: %0.42
    • Published: Jul. 16, 2015
    • Modified: Apr. 12, 2025

  • 9.3

    HIGH
    CVE-2014-7216

    Multiple stack-based buffer overflows in Yahoo! Messenger 11.5.0.228 and earlier allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the (1) shortcut or (2) title keys in an emoticons.xml file.... Read more

    Affected Products : messenger
    • EPSS Score: %5.59
    • Published: Sep. 11, 2015
    • Modified: Apr. 12, 2025
Showing 20 of 291531 Results