Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 10.0

    HIGH
    CVE-2015-7860

    Stack-based buffer overflow in the agent in Persistent Accelerite Radia Client Automation (formerly HP Client Automation), possibly before 9.1, allows remote attackers to execute arbitrary code by sending a large amount of data in an environment that lack... Read more

    Affected Products : radia_client_automation
    • EPSS Score: %15.73
    • Published: Oct. 19, 2015
    • Modified: Apr. 12, 2025

  • 10.0

    CRITICAL
    CVE-2015-7930

    Adcon Telemetry A840 Telemetry Gateway Base Station has hardcoded credentials, which allows remote attackers to obtain administrative access via unspecified vectors.... Read more

    • EPSS Score: %0.92
    • Published: Dec. 24, 2015
    • Modified: Apr. 12, 2025

  • 10.0

    HIGH
    CVE-1999-0088

    IRIX and AIX automountd services (autofsd) allow remote users to execute root commands.... Read more

    Affected Products : aix
    • EPSS Score: %6.18
    • Published: Oct. 26, 1998
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0165

    NFS cache poisoning.... Read more

    Affected Products : linux_kernel solaris sunos bsd_os nfs
    • EPSS Score: %0.47
    • Published: Mar. 01, 1997
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2004-0002

    The TCP MSS (maximum segment size) functionality in netinet allows remote attackers to cause a denial of service (resource exhaustion) via (1) a low MTU, which causes a large number of small packets to be produced, or (2) via a large number of packets wit... Read more

    Affected Products : freebsd
    • EPSS Score: %1.27
    • Published: Mar. 03, 2004
    • Modified: Apr. 03, 2025

  • 10.0

    CRITICAL
    CVE-2024-2086

    The Integrate Google Drive – Browse, Upload, Download, Embed, Play, Share, Gallery, and Manage Your Google Drive Files Into Your WordPress Site plugin for WordPress is vulnerable to unauthorized access of data, modification of data, and loss of data due t... Read more

    Affected Products :
    • Published: Mar. 30, 2024
    • Modified: Nov. 21, 2024

  • 10.0

    HIGH
    CVE-2000-0895

    Buffer overflow in HTTP server on the WatchGuard SOHO firewall allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long GET request.... Read more

    Affected Products : soho_firewall
    • EPSS Score: %3.58
    • Published: Feb. 12, 2001
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2007-2371

    admin/index.php in Gregory Kokanosky phpMyNewsletter 0.8 beta5 and earlier provides access to configuration modification before login, which allows remote attackers to cause a denial of service (loss of configuration data), and possibly perform direct sta... Read more

    Affected Products : phpmynewsletter
    • EPSS Score: %4.50
    • Published: Apr. 30, 2007
    • Modified: Apr. 09, 2025

  • 10.0

    CRITICAL
    CVE-2018-1000825

    FreeCol version <= nightly-2018-08-22 contains a XML External Entity (XXE) vulnerability in FreeColXMLReader parser that can result in Disclosure of confidential data, denial of service, SSRF, port scanning. This attack appear to be exploitable via Freeco... Read more

    Affected Products : freecol
    • EPSS Score: %0.24
    • Published: Dec. 20, 2018
    • Modified: Nov. 21, 2024

  • 10.0

    HIGH
    CVE-2000-0141

    Infopop Ultimate Bulletin Board (UBB) allows remote attackers to execute commands via shell metacharacters in the topic hidden field.... Read more

    Affected Products : ultimate_bulletin_board
    • EPSS Score: %2.47
    • Published: Feb. 11, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0175

    Buffer overflow in StarOffice StarScheduler web server allows remote attackers to gain root access via a long GET command.... Read more

    Affected Products : staroffice
    • EPSS Score: %1.19
    • Published: Mar. 09, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0322

    The passwd.php3 CGI script in the Red Hat Piranha Virtual Server Package allows local users to execute arbitrary commands via shell metacharacters.... Read more

    Affected Products : linux
    • EPSS Score: %77.77
    • Published: Apr. 24, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0343

    Buffer overflow in Sniffit 0.3.x with the -L logging option enabled allows remote attackers to execute arbitrary commands via a long MAIL FROM mail header.... Read more

    Affected Products : sniffit
    • EPSS Score: %7.25
    • Published: May. 02, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2020-3641

    Integer overflow may occur if atom size is less than atom offset as there is improper validation of atom size in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdrag... Read more

    • EPSS Score: %0.33
    • Published: Jun. 02, 2020
    • Modified: Nov. 21, 2024

  • 10.0

    HIGH
    CVE-2009-0270

    Stack-based buffer overflow in PXEService.exe in Fujitsu SystemcastWizard Lite 2.0A, 2.0, 1.9, and earlier allows remote attackers to execute arbitrary code via a large PXE protocol request in a UDP packet.... Read more

    Affected Products : systemcastwizard_lite
    • EPSS Score: %15.57
    • Published: Jan. 26, 2009
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2000-1157

    Buffer overflow in NAI Sniffer Agent allows remote attackers to execute arbitrary commands via a long SNMP community name.... Read more

    Affected Products : sniffer_agent
    • EPSS Score: %2.33
    • Published: Jan. 09, 2001
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2001-0277

    Buffer overflow in ext.dll in BadBlue 1.02.07 Personal Edition allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long HTTP GET request.... Read more

    Affected Products : badblue
    • EPSS Score: %5.27
    • Published: May. 03, 2001
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2001-0499

    Buffer overflow in Transparent Network Substrate (TNS) Listener in Oracle 8i 8.1.7 and earlier allows remote attackers to gain privileges via a long argument to the commands (1) STATUS, (2) PING, (3) SERVICES, (4) TRC_FILE, (5) SAVE_CONFIG, or (6) RELOAD.... Read more

    Affected Products : database_server oracle8i
    • EPSS Score: %74.94
    • Published: Jul. 21, 2001
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2018-17064

    An issue was discovered on D-Link DIR-816 A2 1.10 B05 devices. An HTTP request parameter is used in command string construction within the handler function of the /goform/sylogapply route. This could lead to command injection via the syslogIp parameter af... Read more

    Affected Products : dir-816_a2_firmware dir-816_a2
    • EPSS Score: %14.54
    • Published: Sep. 15, 2018
    • Modified: Nov. 21, 2024

  • 10.0

    HIGH
    CVE-2018-17065

    An issue was discovered on D-Link DIR-816 A2 1.10 B05 devices. Within the handler function of the /goform/DDNS route, a very long password could lead to a stack-based buffer overflow and overwrite the return address.... Read more

    Affected Products : dir-816_a2_firmware dir-816_a2
    • EPSS Score: %0.70
    • Published: Sep. 15, 2018
    • Modified: Nov. 21, 2024
Showing 20 of 291275 Results