Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 10.0

    HIGH
    CVE-2005-2679

    Buffer overflow in Sysinternals Process Explorer 9.23, and other versions before 9.25, allows local users to execute arbitrary code via a long CompanyName field in the VersionInfo information in a running process.... Read more

    Affected Products : process_explorer
    • EPSS Score: %1.23
    • Published: Aug. 23, 2005
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2005-3142

    Heap-based buffer overflow in Kaspersky Antivirus (KAV) 5.0 and Kaspersky Personal Security Suite 1.1 allows remote attackers to execute arbitrary code via a CAB file with large records after the header.... Read more

    • EPSS Score: %21.20
    • Published: Oct. 05, 2005
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2005-3444

    Multiple unspecified vulnerabilities in the Programmatic Interface in Oracle Database Server from 8i up to 9.2.0.5 have unknown impact and attack vectors, aka Oracle Vuln# DB26.... Read more

    Affected Products : database_server
    • EPSS Score: %2.05
    • Published: Nov. 02, 2005
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0250

    Denial of service in Qmail through long SMTP commands.... Read more

    Affected Products : qmail
    • EPSS Score: %0.47
    • Published: Jul. 01, 1997
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0547

    An SSH server allows authentication through the .rhosts file.... Read more

    Affected Products :
    • EPSS Score: %0.39
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0692

    The default configuration of the Array Services daemon (arrayd) disables authentication, allowing remote users to gain root privileges.... Read more

    Affected Products : unicos irix
    • EPSS Score: %0.50
    • Published: Jul. 19, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0745

    Buffer overflow in Source Code Browser Program Database Name Server Daemon (pdnsd) for the IBM AIX C Set ++ compiler.... Read more

    Affected Products : aix
    • EPSS Score: %25.84
    • Published: Aug. 18, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2006-1047

    Unspecified vulnerability in the "Remember Me login functionality" in Joomla! 1.0.7 and earlier has unknown impact and attack vectors.... Read more

    Affected Products : joomla
    • EPSS Score: %0.06
    • Published: Mar. 07, 2006
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2006-1254

    Unspecified vulnerability in BorderWare MXtreme 5.0 and 6.0 allows remote attackers to have an unknown impact via unknown attack vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.... Read more

    Affected Products : mxtreme
    • EPSS Score: %2.56
    • Published: Mar. 19, 2006
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2006-0278

    Multiple unspecified vulnerabilities in Oracle E-Business Suite and Applications 11.5.9 have unspecified impact and attack vectors, as identified by Oracle Vuln# (1) APPS02 in the (a) CRM Technical Foundation component; (2) APPS03 in the (b) iProcurement ... Read more

    Affected Products : e-business_suite
    • EPSS Score: %1.81
    • Published: Jan. 18, 2006
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-1493

    Vulnerability in crp in Hewlett Packard Apollo Domain OS SR10 through SR10.3 allows remote attackers to gain root privileges via insecure system calls, (1) pad_$dm_cmd and (2) pad_$def_pfk().... Read more

    Affected Products : apollo_domain_os
    • EPSS Score: %0.63
    • Published: Dec. 18, 1991
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0003

    Buffer overflow in UnixWare rtpm program allows local users to gain privileges via a long environmental variable.... Read more

    Affected Products : unixware
    • EPSS Score: %0.60
    • Published: Dec. 30, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0352

    Pine before version 4.21 does not properly filter shell metacharacters from URLs, which allows remote attackers to execute arbitrary commands via a malformed URL.... Read more

    Affected Products : pine
    • EPSS Score: %2.47
    • Published: Nov. 18, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0391

    Buffer overflow in krshd in Kerberos 5 allows remote attackers to gain root privileges.... Read more

    • EPSS Score: %8.48
    • Published: May. 16, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0687

    Auction Weaver CGI script 1.03 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) attack in the catdir parameter.... Read more

    Affected Products : auction_weaver
    • EPSS Score: %1.00
    • Published: Oct. 20, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0971

    Avirt Mail 4.0 and 4.2 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long "RCPT TO" or "MAIL FROM" command.... Read more

    Affected Products : avirt_mail_server
    • EPSS Score: %7.86
    • Published: Dec. 19, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2001-0225

    fortran math component in Infobot 0.44.5.3 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters.... Read more

    Affected Products : infobot
    • EPSS Score: %2.10
    • Published: Jun. 02, 2001
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2001-0527

    DCScripts DCForum versions 2000 and earlier allow a remote attacker to gain additional privileges by inserting pipe symbols (|) and newlines into the last name in the registration form, which will create an extra entry in the registration database.... Read more

    Affected Products : dcforum dcforum_2000
    • EPSS Score: %6.99
    • Published: Aug. 14, 2001
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2006-5024

    Multiple unspecified vulnerabilities in Paisterist Simple HTTP Scanner (sHTTPScanner) before 0.4 have unknown impact and attack vectors.... Read more

    Affected Products : simple_http_scanner
    • EPSS Score: %0.48
    • Published: Sep. 27, 2006
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2002-1519

    Format string vulnerability in the CLI interface for WatchGuard Firebox Vclass 3.2 and earlier, and RSSA Appliance 3.0.2, allows remote attackers to cause a denial of service and possibly execute arbitrary code via format string specifiers in the password... Read more

    Affected Products : firebox rapidstream
    • EPSS Score: %3.68
    • Published: Apr. 02, 2003
    • Modified: Apr. 03, 2025
Showing 20 of 291360 Results