Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.

Latest Critical Actively Exploited Remotely Exploitable

9.3

HIGH

CVE-2022-22591

A memory corruption issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.2. A malicious application may be able to execute arbitrary code with kernel privileges....

Affected Products : macos
Published: Mar. 18, 2022

Modified: Nov. 21, 2024
9.3

HIGH

CVE-2022-22613

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in tvOS 15.4, iOS 15.4 and iPadOS 15.4, macOS Big Sur 11.6.5, Security Update 2022-003 Catalina, watchOS 8.5, macOS Monterey 12.3. An application may be able to ...

Affected Products : macos mac_os_x iphone_os tvos watchos ipados
Published: Mar. 18, 2022

Modified: Nov. 21, 2024
9.3

HIGH

CVE-2022-22634

A buffer overflow was addressed with improved bounds checking. This issue is fixed in tvOS 15.4, iOS 15.4 and iPadOS 15.4. A malicious application may be able to execute arbitrary code with kernel privileges....

Affected Products : iphone_os tvos ipados
Published: Mar. 18, 2022

Modified: Nov. 21, 2024
9.3

HIGH

CVE-2022-22578

A logic issue was addressed with improved validation. This issue is fixed in tvOS 15.3, iOS 15.3 and iPadOS 15.3, watchOS 8.4, macOS Monterey 12.2. A malicious application may be able to gain root privileges....

Affected Products : macos iphone_os tvos watchos ipados
Published: Mar. 18, 2022

Modified: Nov. 21, 2024
9.3

HIGH

CVE-2006-5559

The Execute method in the ADODB.Connection 2.7 and 2.8 ActiveX control objects (ADODB.Connection.2.7 and ADODB.Connection.2.8) in the Microsoft Data Access Components (MDAC) 2.5 SP3, 2.7 SP1, 2.8, and 2.8 SP1 does not properly track freed memory when the ...

Affected Products : windows_2000 windows_2003_server windows_xp data_access_components
Published: Oct. 27, 2006

Modified: Apr. 09, 2025
9.3

HIGH

CVE-2022-22665

A logic issue was addressed with improved validation. This issue is fixed in macOS Monterey 12.3. A malicious application may be able to gain root privileges....

Affected Products : macos mac_os_x
Published: Mar. 18, 2022

Modified: Nov. 21, 2024
9.3

HIGH

CVE-2022-22615

A use after free issue was addressed with improved memory management. This issue is fixed in tvOS 15.4, iOS 15.4 and iPadOS 15.4, macOS Big Sur 11.6.5, Security Update 2022-003 Catalina, watchOS 8.5, macOS Monterey 12.3. An application may be able to exec...

Affected Products : macos mac_os_x iphone_os tvos watchos ipados
Published: Mar. 18, 2022

Modified: Nov. 21, 2024
9.3

CRITICAL

CVE-2022-22157

A traffic classification vulnerability in Juniper Networks Junos OS on the SRX Series Services Gateways may allow an attacker to bypass Juniper Deep Packet Inspection (JDPI) rules and access unauthorized networks or resources, when 'no-syn-check' is enabl...

Affected Products : junos
Published: Jan. 19, 2022

Modified: Nov. 21, 2024
9.3

HIGH

CVE-2011-0655

Microsoft PowerPoint 2007 SP2 and 2010; Office 2004, 2008, and 2011 for Mac; Open XML File Format Converter for Mac; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP2; PowerPoint Viewer; PowerPoint Viewer 2007 SP2; and PowerP...

Affected Products : office powerpoint_viewer powerpoint open_xml_file_format_converter office_compatibility_pack office_powerpoint_viewer powerpoint_web_app
Published: Apr. 13, 2011

Modified: Apr. 11, 2025
9.3

HIGH

CVE-2022-21972

Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability...

Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_server windows_10_1607 +14 more products
Published: May. 10, 2022

Modified: Jan. 02, 2025
9.3

HIGH

CVE-2022-21888

Windows Modern Execution Server Remote Code Execution Vulnerability...

Affected Products : windows_10 windows_server_2019 windows_server windows_10_1809 windows_10_20h2 windows_10_21h2 windows_server_2022 windows_11_21h2 windows_11 windows +3 more products
Published: Jan. 11, 2022

Modified: Nov. 21, 2024
9.3

HIGH

CVE-2022-21851

Remote Desktop Client Remote Code Execution Vulnerability...

Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_server windows_10_1607 +15 more products
Published: Jan. 11, 2022

Modified: Nov. 21, 2024
9.3

HIGH

CVE-2022-21992

Windows Mobile Device Management Remote Code Execution Vulnerability...

Affected Products : windows_10 windows_server_2016 windows_server_2019 windows_server windows_10_1607 windows_10_1809 windows_10_20h2 windows_10_21h2 windows_server_2022 windows_11_21h2 +5 more products
Published: Feb. 09, 2022

Modified: Nov. 21, 2024
9.3

CRITICAL

CVE-2022-21796

A memory corruption vulnerability exists in the netserver parse_command_list functionality of reolink RLC-410W v3.0.0.136_20121102. A specially-crafted HTTP request can lead to an out-of-bounds write. An attacker can send an HTTP request to trigger this v...

Affected Products : rlc-410w_firmware rlc-410w
Published: Jan. 28, 2022

Modified: Nov. 21, 2024
9.3

HIGH

CVE-2022-21850

Remote Desktop Client Remote Code Execution Vulnerability...

Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_server windows_10_1607 +15 more products
Published: Jan. 11, 2022

Modified: Nov. 21, 2024
9.3

CRITICAL

CVE-2022-1996

Authorization Bypass Through User-Controlled Key in GitHub repository emicklei/go-restful prior to v3.8.0....

Affected Products : fedora go-restful
Published: Jun. 08, 2022

Modified: Nov. 21, 2024
9.3

HIGH

CVE-2011-1279

Microsoft Excel 2002 SP3 and 2003 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac do not properly validate record information during parsing of Excel spreadsheets, which allows remote attackers to execute arbitrary code or ca...

Affected Products : office excel open_xml_file_format_converter
Published: Jun. 16, 2011

Modified: Apr. 11, 2025
9.3

CRITICAL

CVE-2022-1543

Improper handling of Length parameter in GitHub repository erudika/scoold prior to 1.49.4. When the text size is large enough the service results in a momentary outage in a production environment. That can lead to memory corruption on the server....

Affected Products : scoold
Published: Apr. 29, 2022

Modified: Nov. 21, 2024
9.3

HIGH

CVE-2022-1362

The affected On-Premise cnMaestro is vulnerable inside a specific route where a user can upload a crafted package to the system. An attacker could abuse this user-controlled data to execute arbitrary commands on the server....

Affected Products : cnmaestro
Published: May. 17, 2022

Modified: Nov. 21, 2024
9.3

CRITICAL

CVE-2022-1231

XSS via Embedded SVG in SVG Diagram Format in GitHub repository plantuml/plantuml prior to 1.2022.4. Stored XSS in the context of the diagram embedder. Depending on the actual context, this ranges from stealing secrets to account hijacking or even to code...

Affected Products : fedora plantuml
Published: Apr. 15, 2022

Modified: Nov. 21, 2024

Showing 20 of 292868 Results

1
...
1862
1863
1864
1865
1866
1867
1868
...
14644

Browse by Apps

Latest CVE Feed

9.3

9.3

9.3

9.3

9.3

9.3

9.3

9.3

9.3

9.3

9.3

9.3

9.3

9.3

9.3

9.3

9.3

9.3

9.3

9.3

Theme Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable