Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 9.3

    HIGH
    CVE-2022-22615

    A use after free issue was addressed with improved memory management. This issue is fixed in tvOS 15.4, iOS 15.4 and iPadOS 15.4, macOS Big Sur 11.6.5, Security Update 2022-003 Catalina, watchOS 8.5, macOS Monterey 12.3. An application may be able to exec... Read more

    Affected Products : macos mac_os_x iphone_os tvos watchos ipados
    • EPSS Score: %0.28
    • Published: Mar. 18, 2022
    • Modified: Nov. 21, 2024

  • 9.3

    CRITICAL
    CVE-2022-22157

    A traffic classification vulnerability in Juniper Networks Junos OS on the SRX Series Services Gateways may allow an attacker to bypass Juniper Deep Packet Inspection (JDPI) rules and access unauthorized networks or resources, when 'no-syn-check' is enabl... Read more

    Affected Products : junos
    • EPSS Score: %0.24
    • Published: Jan. 19, 2022
    • Modified: Nov. 21, 2024

  • 9.3

    HIGH
    CVE-2011-0655

    Microsoft PowerPoint 2007 SP2 and 2010; Office 2004, 2008, and 2011 for Mac; Open XML File Format Converter for Mac; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP2; PowerPoint Viewer; PowerPoint Viewer 2007 SP2; and PowerP... Read more

    • EPSS Score: %66.25
    • Published: Apr. 13, 2011
    • Modified: Apr. 11, 2025

  • 9.3

    HIGH
    CVE-2022-21972

    Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability... Read more

    • EPSS Score: %57.57
    • Published: May. 10, 2022
    • Modified: Jan. 02, 2025

  • 9.3

    HIGH
    CVE-2022-21888

    Windows Modern Execution Server Remote Code Execution Vulnerability... Read more

    • EPSS Score: %2.83
    • Published: Jan. 11, 2022
    • Modified: Nov. 21, 2024

  • 9.3

    HIGH
    CVE-2022-21851

    Remote Desktop Client Remote Code Execution Vulnerability... Read more

    • EPSS Score: %7.94
    • Published: Jan. 11, 2022
    • Modified: Nov. 21, 2024

  • 9.3

    HIGH
    CVE-2022-21992

    Windows Mobile Device Management Remote Code Execution Vulnerability... Read more

    • EPSS Score: %1.11
    • Published: Feb. 09, 2022
    • Modified: Nov. 21, 2024

  • 9.3

    CRITICAL
    CVE-2022-21796

    A memory corruption vulnerability exists in the netserver parse_command_list functionality of reolink RLC-410W v3.0.0.136_20121102. A specially-crafted HTTP request can lead to an out-of-bounds write. An attacker can send an HTTP request to trigger this v... Read more

    Affected Products : rlc-410w_firmware rlc-410w
    • EPSS Score: %0.67
    • Published: Jan. 28, 2022
    • Modified: Nov. 21, 2024

  • 9.3

    HIGH
    CVE-2022-21850

    Remote Desktop Client Remote Code Execution Vulnerability... Read more

    • EPSS Score: %7.94
    • Published: Jan. 11, 2022
    • Modified: Nov. 21, 2024

  • 9.3

    CRITICAL
    CVE-2022-1996

    Authorization Bypass Through User-Controlled Key in GitHub repository emicklei/go-restful prior to v3.8.0.... Read more

    Affected Products : fedora go-restful
    • EPSS Score: %0.91
    • Published: Jun. 08, 2022
    • Modified: Nov. 21, 2024

  • 9.3

    HIGH
    CVE-2011-1279

    Microsoft Excel 2002 SP3 and 2003 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac do not properly validate record information during parsing of Excel spreadsheets, which allows remote attackers to execute arbitrary code or ca... Read more

    • EPSS Score: %43.53
    • Published: Jun. 16, 2011
    • Modified: Apr. 11, 2025

  • 9.3

    CRITICAL
    CVE-2022-1543

    Improper handling of Length parameter in GitHub repository erudika/scoold prior to 1.49.4. When the text size is large enough the service results in a momentary outage in a production environment. That can lead to memory corruption on the server.... Read more

    Affected Products : scoold
    • EPSS Score: %0.39
    • Published: Apr. 29, 2022
    • Modified: Nov. 21, 2024

  • 9.3

    HIGH
    CVE-2022-1362

    The affected On-Premise cnMaestro is vulnerable inside a specific route where a user can upload a crafted package to the system. An attacker could abuse this user-controlled data to execute arbitrary commands on the server.... Read more

    Affected Products : cnmaestro
    • EPSS Score: %0.09
    • Published: May. 17, 2022
    • Modified: Nov. 21, 2024

  • 9.3

    CRITICAL
    CVE-2022-1231

    XSS via Embedded SVG in SVG Diagram Format in GitHub repository plantuml/plantuml prior to 1.2022.4. Stored XSS in the context of the diagram embedder. Depending on the actual context, this ranges from stealing secrets to account hijacking or even to code... Read more

    Affected Products : fedora plantuml
    • EPSS Score: %0.28
    • Published: Apr. 15, 2022
    • Modified: Nov. 21, 2024

  • 9.3

    HIGH
    CVE-2022-1030

    Okta Advanced Server Access Client for Linux and macOS prior to version 1.58.0 was found to be vulnerable to command injection via a specially crafted URL. An attacker, who has knowledge of a valid team name for the victim and also knows a valid target ho... Read more

    • EPSS Score: %0.42
    • Published: Mar. 23, 2022
    • Modified: Nov. 21, 2024

  • 9.3

    CRITICAL
    CVE-2022-0990

    Server-Side Request Forgery (SSRF) in GitHub repository janeczku/calibre-web prior to 0.6.18.... Read more

    Affected Products : calibre-web calibre-web
    • EPSS Score: %0.27
    • Published: Apr. 04, 2022
    • Modified: Nov. 21, 2024

  • 9.3

    HIGH
    CVE-2021-46363

    An issue in the Export function of Magnolia v6.2.3 and below allows attackers to perform Formula Injection attacks via crafted CSV/XLS files. These formulas may result in arbitrary code execution on a victim's computer when opening the exported files with... Read more

    Affected Products : magnolia_cms
    • EPSS Score: %1.66
    • Published: Feb. 11, 2022
    • Modified: Nov. 21, 2024

  • 9.3

    HIGH
    CVE-2021-45341

    A buffer overflow vulnerability in CDataMoji of the jwwlib component of LibreCAD 2.2.0-rc3 and older allows an attacker to achieve Remote Code Execution using a crafted JWW document.... Read more

    Affected Products : fedora debian_linux librecad
    • EPSS Score: %1.95
    • Published: Jan. 25, 2022
    • Modified: Nov. 21, 2024

  • 9.3

    HIGH
    CVE-2021-45061

    Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (and earlier) and 17.011.30204 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploita... Read more

    • EPSS Score: %1.67
    • Published: Jan. 14, 2022
    • Modified: Nov. 21, 2024

  • 9.3

    HIGH
    CVE-2021-44706

    Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (and earlier) and 17.011.30204 (and earlier) are affected by a use-after-free vulnerability in the processing of Format event actions that could result in arbitrary code execution in the c... Read more

    • EPSS Score: %7.81
    • Published: Jan. 14, 2022
    • Modified: Nov. 21, 2024
Showing 20 of 292510 Results