Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 10.0

    HIGH
    CVE-2016-5071

    Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 execute the management web application as root.... Read more

    Affected Products : aleos_firmware gx_440
    • EPSS Score: %0.03
    • Published: Apr. 10, 2017
    • Modified: Apr. 20, 2025

  • 10.0

    HIGH
    CVE-2004-2233

    Unknown "front page vulnerability with Moodle servers" for Moodle before 1.3.2 has unknown impact and attack vectors.... Read more

    Affected Products : moodle
    • EPSS Score: %0.62
    • Published: Dec. 31, 2004
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2004-2359

    Dell TrueMobile 1300 WLAN Mini-PCI Card Util TrayApplet 3.10.39.0 does not properly drop SYSTEM privileges when started from the systray applet, which allows local users to gain privileges by accessing the Help functionality.... Read more

    • EPSS Score: %1.23
    • Published: Dec. 31, 2004
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2004-2421

    Unknown vulnerability in Hitachi Job Management Partner (JP1) JP1/File Transmission Server/FTP 6 and 7, when running on HP-UX in trusted mode, allows attackers to bypass authentication and gain administrator rights.... Read more

    • EPSS Score: %0.77
    • Published: Dec. 31, 2004
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2004-2406

    Unknown "overflow" in the phpgw_config table for phpGroupWare before 0.9.14.002 has unknown attack vectors and impact.... Read more

    Affected Products : phpgroupware
    • EPSS Score: %0.38
    • Published: Dec. 31, 2004
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2012-4033

    Multiple unspecified vulnerabilities in the Zingiri Web Shop plugin before 2.4.0 for WordPress have unknown impact and attack vectors.... Read more

    Affected Products : wordpress zingiri_web_shop
    • EPSS Score: %1.40
    • Published: Jul. 18, 2012
    • Modified: Apr. 11, 2025

  • 10.0

    HIGH
    CVE-2016-0835

    decoder/impeg2d_dec_hdr.c in mediaserver in Android 6.x before 2016-04-01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file that triggers a certain negative value, aka internal bug ... Read more

    Affected Products : android
    • EPSS Score: %4.02
    • Published: Apr. 18, 2016
    • Modified: Apr. 12, 2025

  • 10.0

    HIGH
    CVE-2016-0842

    The H.264 decoder in libstagefright in Android 6.x before 2016-04-01 mishandles Memory Management Control Operation (MMCO) data, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media f... Read more

    Affected Products : android
    • EPSS Score: %0.79
    • Published: Apr. 18, 2016
    • Modified: Apr. 12, 2025

  • 10.0

    HIGH
    CVE-2007-1307

    Unspecified vulnerability in Lenovo Intel PRO/1000 LAN adapter before Build 135400, as used on IBM Lenovo ThinkPad systems, has unknown impact and attack vectors.... Read more

    Affected Products : pro_1000_lan_adapter thinkpad
    • EPSS Score: %0.35
    • Published: Mar. 07, 2007
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2005-3752

    Unspecified vulnerability in ldapdiff before 1.1.1 has unknown impact and attack vectors, related to "ldapdiff.conf path construction".... Read more

    Affected Products : ldapdiff
    • EPSS Score: %0.38
    • Published: Nov. 22, 2005
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2005-4090

    Unspecified vulnerability in HP-UX B.11.00 to B.11.23, when IPSEC is running, allows remote attackers to have unknown impact.... Read more

    Affected Products : hp-ux
    • EPSS Score: %2.78
    • Published: Dec. 08, 2005
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0896

    Buffer overflow in RealNetworks RealServer administration utility allows remote attackers to execute arbitrary commands via a long username and password.... Read more

    Affected Products : realserver_g2
    • EPSS Score: %7.21
    • Published: Nov. 04, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-1059

    Vulnerability in rexec daemon (rexecd) in AT&T TCP/IP 4.0 for various SVR4 systems allows remote attackers to execute arbitrary commands.... Read more

    Affected Products : svr4
    • EPSS Score: %4.26
    • Published: Feb. 25, 1992
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-1160

    Vulnerability in ftpd/kftpd in HP-UX 10.x and 9.x allows local and possibly remote users to gain root privileges.... Read more

    Affected Products : hp-ux
    • EPSS Score: %0.45
    • Published: Feb. 02, 1997
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-1467

    Vulnerability in rcp on SunOS 4.0.x allows remote attackers from trusted hosts to execute arbitrary commands as root, possibly related to the configuration of the nobody user.... Read more

    Affected Products : sunos
    • EPSS Score: %2.86
    • Published: Oct. 26, 1989
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0233

    SuSE Linux IMAP server allows remote attackers to bypass IMAP authentication and gain privileges.... Read more

    Affected Products : suse_linux_imap_server
    • EPSS Score: %0.32
    • Published: Mar. 15, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0833

    Buffer overflow in WinSMTP 1.06f and 2.X allows remote attackers to cause a denial of service via a long (1) USER or (2) HELO command.... Read more

    Affected Products : winsmtp
    • EPSS Score: %4.30
    • Published: Nov. 14, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-1044

    Format string vulnerability in ypbind-mt in SuSE SuSE-6.2, and possibly other Linux operating systems, allows an attacker to gain root privileges.... Read more

    Affected Products : suse_linux
    • EPSS Score: %0.45
    • Published: Dec. 11, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-1076

    Netscape (iPlanet) Certificate Management System 4.2 and Directory Server 4.12 stores the administrative password in plaintext, which could allow local and possibly remote attackers to gain administrative privileges on the server.... Read more

    • EPSS Score: %0.51
    • Published: Dec. 11, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2001-0168

    Buffer overflow in AT&T WinVNC (Virtual Network Computing) server 3.3.3r7 and earlier allows remote attackers to execute arbitrary commands via a long HTTP GET request when the DebugLevel registry key is greater than 0.... Read more

    Affected Products : winvnc
    • EPSS Score: %67.36
    • Published: May. 03, 2001
    • Modified: Apr. 03, 2025
Showing 20 of 291002 Results