Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.

Latest Critical Actively Exploited Remotely Exploitable

10.0

HIGH

CVE-2015-0984

Directory traversal vulnerability in the FTP server on Honeywell Excel Web XL1000C50 52 I/O, XL1000C100 104 I/O, XL1000C500 300 I/O, XL1000C1000 600 I/O, XL1000C50U 52 I/O UUKL, XL1000C100U 104 I/O UUKL, XL1000C500U 300 I/O UUKL, and XL1000C1000U 600 I/O ...

Affected Products : excel_web_xl_1000c100_104_i\/o excel_web_xl_1000c1000_600_i\/o excel_web_xl_1000c1000_600_i\/o_uukl excel_web_xl_1000c100u_104_i\/o_uukl excel_web_xl_1000c50_52_i\/o excel_web_xl_1000c500_300_i\/o excel_web_xl_1000c500_300_i\/o_uukl excel_web_xl_1000c50u_52_i\/o_uukl
Published: Mar. 31, 2015

Modified: Apr. 12, 2025
10.0

HIGH

CVE-2015-0855

The _mediaLibraryPlayCb function in mainwindow.py in pitivi before 0.95 allows attackers to execute arbitrary code via shell metacharacters in a file path....

Affected Products : pitivi
Published: Mar. 23, 2017

Modified: Apr. 20, 2025
10.0

HIGH

CVE-2015-0786

Stack-based buffer overflow in the logging functionality in the Preboot Policy service in Novell ZENworks Configuration Management (ZCM) allows remote attackers to execute arbitrary code via unspecified vectors....

Affected Products : zenworks_configuration_management
Published: Aug. 09, 2017

Modified: Apr. 20, 2025
10.0

HIGH

CVE-2014-4487

Buffer overflow in IOHIDFamily in Apple iOS before 8.1.3, Apple OS X before 10.10.2, and Apple TV before 7.0.3 allows attackers to execute arbitrary code in a privileged context via a crafted app....

Affected Products : mac_os_x iphone_os tvos
Published: Jan. 30, 2015

Modified: Apr. 12, 2025
10.0

HIGH

CVE-2015-0850

The Git plugin for FusionForge before 6.0rc4 allows remote attackers to execute arbitrary code via an unspecified parameter when creating a secondary Git repository....

Affected Products : fusionforge
Published: Jun. 02, 2015

Modified: Apr. 12, 2025
10.0

HIGH

CVE-2014-2830

Stack-based buffer overflow in cifskey.c or cifscreds.c in cifs-utils before 6.4, as used in pam_cifscreds, allows remote attackers to have unspecified impact via unknown vectors....

Affected Products : cifs-utils
Published: Mar. 31, 2015

Modified: Apr. 12, 2025
10.0

HIGH

CVE-2012-0444

Mozilla Firefox before 3.6.26 and 4.x through 9.0, Thunderbird before 3.1.18 and 5.0 through 9.0, and SeaMonkey before 2.7 do not properly initialize nsChildView data structures, which allows remote attackers to cause a denial of service (memory corruptio...

Affected Products : firefox thunderbird ubuntu_linux debian_linux opensuse linux_enterprise_server seamonkey linux_enterprise_desktop linux_enterprise_software_development_kit
Published: Feb. 01, 2012

Modified: Apr. 11, 2025
10.0

HIGH

CVE-2015-0701

Cisco UCS Central Software before 1.3(1a) allows remote attackers to execute arbitrary commands via a crafted HTTP request, aka Bug ID CSCut46961....

Affected Products : unified_computing_system_central_software
Published: May. 07, 2015

Modified: Apr. 12, 2025
10.0

HIGH

CVE-2015-0653

The management interface in Cisco TelePresence Video Communication Server (VCS) and Cisco Expressway before X7.2.4, X8 before X8.1.2, and X8.2 before X8.2.2 and Cisco TelePresence Conductor before X2.3.1 and XC2.4 before XC2.4.1 allows remote attackers to...

Affected Products : telepresence_conductor telepresence_video_communication_server_software expressway_software
Published: Mar. 13, 2015

Modified: Apr. 12, 2025
10.0

HIGH

CVE-2011-0080

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 3.5.x before 3.5.19 and 3.6.x before 3.6.17, Thunderbird before 3.1.10, and SeaMonkey before 2.0.14 allow remote attackers to cause a denial of service (memory corruption and ap...

Affected Products : firefox thunderbird seamonkey
Published: May. 07, 2011

Modified: Apr. 11, 2025
10.0

CRITICAL

CVE-2020-4429

IBM Data Risk Manager 2.0.1, 2.0.2, 2.0.3, 2.0.4, 2.0.5, and 2.0.6 contains a default password for an IDRM administrative account. A remote attacker could exploit this vulnerability to login and execute arbitrary code on the system with root privileges. I...

Affected Products : data_risk_manager
Published: May. 07, 2020

Modified: Nov. 21, 2024
10.0

CRITICAL

CVE-2015-0565

NaCl in 2015 allowed the CLFLUSH instruction, making rowhammer attacks possible....

Affected Products : native_client
Published: Feb. 25, 2020

Modified: Nov. 21, 2024
10.0

HIGH

CVE-2011-0267

Multiple buffer overflows in nnmRptConfig.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allow remote attackers to execute arbitrary code via a long (1) schdParams or (2) nameParams parameter, a different vulnerability than CVE-2011-0266....

Affected Products : openview_network_node_manager
Published: Jan. 13, 2011

Modified: Apr. 11, 2025
10.0

HIGH

CVE-2015-0574

In all Qualcomm products with Android releases from CAF using the Linux kernel, the validation of filesystem access was insufficient....

Affected Products : android
Published: Aug. 18, 2017

Modified: Apr. 20, 2025
10.0

HIGH

CVE-2015-0491

Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2015-0459....

Affected Products : jdk jre opensuse suse_linux_enterprise_desktop javafx
Published: Apr. 16, 2015

Modified: Apr. 12, 2025
10.0

HIGH

CVE-2015-0469

Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D....

Affected Products : jdk jre
Published: Apr. 16, 2015

Modified: Apr. 12, 2025
10.0

HIGH

CVE-2008-5134

Buffer overflow in the lbs_process_bss function in drivers/net/wireless/libertas/scan.c in the libertas subsystem in the Linux kernel before 2.6.27.5 allows remote attackers to have an unknown impact via an "invalid beacon/probe response."...

Affected Products : linux_kernel
Published: Nov. 18, 2008

Modified: Apr. 09, 2025
10.0

HIGH

CVE-2013-4652

Unspecified vulnerability in the command-line management interface on Siemens Scalance W7xx devices with firmware before 4.5.4 allows remote attackers to bypass authentication and execute arbitrary code via a (1) SSH or (2) TELNET connection....

Affected Products : scalance_w700_series_firmware scalance_w744-1 scalance_w744-1pro scalance_w746-1 scalance_w746-1pro scalance_w747-1 scalance_w747-1rr scalance_w784-1 scalance_w784-1rr scalance_w786-1pro +7 more products
Published: Aug. 01, 2013

Modified: Apr. 11, 2025
10.0

HIGH

CVE-2015-0360

Adobe Flash Player before 13.0.0.281 and 14.x through 17.x before 17.0.0.169 on Windows and OS X and before 11.2.202.457 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a differ...

Affected Products : linux_kernel flash_player mac_os_x opensuse suse_linux_enterprise_desktop windows enterprise_linux_server_supplementary enterprise_linux_desktop_supplementary enterprise_linux_server_supplementary_eus enterprise_linux_workstation_supplementary +1 more products
Published: Apr. 14, 2015

Modified: Apr. 12, 2025
10.0

HIGH

CVE-2015-0351

Use-after-free vulnerability in Adobe Flash Player before 13.0.0.281 and 14.x through 17.x before 17.0.0.169 on Windows and OS X and before 11.2.202.457 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability...

Affected Products : linux_kernel flash_player mac_os_x opensuse suse_linux_enterprise_desktop windows enterprise_linux_server_supplementary enterprise_linux_desktop_supplementary enterprise_linux_server_supplementary_eus enterprise_linux_workstation_supplementary +1 more products
Published: Apr. 14, 2015

Modified: Apr. 12, 2025

Showing 20 of 293592 Results

1
...
255
256
257
258
259
260
261
...
14680

Browse by Apps

Latest CVE Feed

10.0

10.0

10.0

10.0

10.0

10.0

10.0

10.0

10.0

10.0

10.0

10.0

10.0

10.0

10.0

10.0

10.0

10.0

10.0

10.0

CVEFeed.io UI Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable