Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.

Latest Critical Actively Exploited Remotely Exploitable

10.0

HIGH

CVE-2015-9160

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon Wear MDM9206, MDM9607, MDM9635M, MDM9650, MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 425, SD 430, SD 450, SD 615/1...

Affected Products : sd_450_firmware sd_625_firmware sd_820_firmware sd_820a_firmware sd_835_firmware mdm9650_firmware msm8909w_firmware mdm9206_firmware mdm9607_firmware mdm9635m_firmware +48 more products
EPSS Score: %0.22

Published: Apr. 18, 2018

Modified: Nov. 21, 2024
10.0

HIGH

CVE-2015-9162

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 410/12, SD 617, SD 650/52, SD 800, SD 808, and SD 810, in the function "Certificate_CreateWithBuffer" in the QSEE app TQS, in case of memory allocation failure, ...

Affected Products : android sd_410_firmware sd_412_firmware sd_650_firmware sd_652_firmware sd_617_firmware sd_800_firmware sd_810_firmware sd_808_firmware sd_410 +7 more products
EPSS Score: %0.10

Published: Apr. 18, 2018

Modified: Nov. 21, 2024
10.0

HIGH

CVE-2019-12518

Anviz CrossChex access control management software 4.3.8.0 and 4.3.12 is vulnerable to a buffer overflow vulnerability....

Affected Products : crosschex
EPSS Score: %74.84

Published: Dec. 02, 2019

Modified: Nov. 21, 2024
10.0

HIGH

CVE-2015-9177

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon Wear MDM9206, MDM9650, MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, S...

Affected Products : sd_450_firmware sd_625_firmware sd_820_firmware sd_820a_firmware sd_835_firmware mdm9650_firmware msm8909w_firmware mdm9206_firmware sd_410_firmware sd_412_firmware +44 more products
EPSS Score: %0.22

Published: Apr. 18, 2018

Modified: Nov. 21, 2024
10.0

HIGH

CVE-2015-9178

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon Wear MDM9206, MDM9650, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, ...

Affected Products : sd_450_firmware sd_625_firmware sd_820_firmware sd_820a_firmware sd_835_firmware mdm9650_firmware mdm9206_firmware sd_410_firmware sd_412_firmware sd_210_firmware +40 more products
EPSS Score: %0.22

Published: Apr. 18, 2018

Modified: Nov. 21, 2024
10.0

HIGH

CVE-2017-12785

The novish command-line interface, included in the NoviWare software distribution through NW400.2.6 and deployed on NoviSwitch devices, is prone to a buffer overflow in the "show log cli" command. This could be used by a read-only user (monitor role) to g...

Affected Products : noviware
EPSS Score: %11.68

Published: Aug. 22, 2017

Modified: Apr. 20, 2025
10.0

HIGH

CVE-2002-2017

sastcpd in SAS/Base 8.0 allows local users to execute arbitrary code by setting the authprog environment variable to reference a malicious program, which is then executed by sastcpd....

Affected Products : base integration_technologies
EPSS Score: %0.82

Published: Dec. 31, 2002

Modified: Apr. 03, 2025
10.0

HIGH

CVE-2014-1905

Unrestricted file upload vulnerability in ls/vw_snapshots.php in the VideoWhisper Live Streaming Integration plugin before 4.29.5 for WordPress allows remote attackers to execute arbitrary PHP code by uploading a file with a double extension, and then acc...

Affected Products : videowhisper_live_streaming_integration live_streaming_integration_plugin
EPSS Score: %17.96

Published: Dec. 29, 2014

Modified: Apr. 12, 2025
10.0

HIGH

CVE-2015-9184

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon Wear MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, ...

Affected Products : sd_450_firmware sd_625_firmware sd_820_firmware sd_820a_firmware sd_835_firmware msm8909w_firmware sd_410_firmware sd_412_firmware sd_210_firmware sd_212_firmware +36 more products
EPSS Score: %0.23

Published: Apr. 18, 2018

Modified: Nov. 21, 2024
10.0

HIGH

CVE-2015-9201

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon Wear IPQ4019, MDM9206, MDM9607, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8909W, SD 210/SD 212/SD 205, SD 400...

Affected Products : sd_450_firmware sd_625_firmware sd_820_firmware sd_820a_firmware sd_835_firmware mdm9650_firmware msm8909w_firmware sdx20_firmware mdm9206_firmware mdm9607_firmware +56 more products
EPSS Score: %0.22

Published: Apr. 18, 2018

Modified: Nov. 21, 2024
10.0

HIGH

CVE-2000-1221

The line printer daemon (lpd) in the lpr package in multiple Linux operating systems authenticates by comparing the reverse-resolved hostname of the local machine to the hostname of the print server as returned by gethostname, which allows remote attacker...

Affected Products : debian_linux linux irix
EPSS Score: %12.18

Published: Jan. 08, 2000

Modified: Apr. 03, 2025
10.0

HIGH

CVE-2000-0093

An installation of Red Hat uses DES password encryption with crypt() for the initial password, instead of md5....

Affected Products : linux
EPSS Score: %0.25

Published: Jan. 21, 2000

Modified: Apr. 03, 2025
10.0

HIGH

CVE-2014-1982

The administrative interface in Allied Telesis AT-RG634A ADSL Broadband router 3.3+, iMG624A firmware 3.5, iMG616LH firmware 2.4, and iMG646BD firmware 3.5 allows remote attackers to gain privileges and execute arbitrary commands via a direct request to c...

Affected Products : img646bd_firmware img646bd at-rg634a_firmware at-rg634a img624a_firmware img624a img616lh_firmware img616lh
EPSS Score: %17.89

Published: Mar. 31, 2014

Modified: Apr. 12, 2025
10.0

HIGH

CVE-2013-3353

Buffer overflow in Adobe Reader and Acrobat before 10.1.8 and 11.x before 11.0.04 on Windows and Mac OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2013-3356....

Affected Products : mac_os_x acrobat acrobat_reader windows
EPSS Score: %43.98

Published: Sep. 12, 2013

Modified: Apr. 11, 2025
10.0

HIGH

CVE-2013-2466

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to D...

Affected Products : jdk jre jre jdk
EPSS Score: %7.54

Published: Jun. 18, 2013

Modified: Apr. 11, 2025
10.0

HIGH

CVE-2011-0372

The CGI implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.5.x allows remote attackers to execute arbitrary commands via a malformed request, related to "command injection vulnerabilities," aka Bug ID CSCtb31640....

Affected Products : telepresence_system_software telepresence_system_1000 telepresence_system_3000 telepresence_system_1100 telepresence_system_1300_series telepresence_system_3200_series telepresence_system_500_series
EPSS Score: %4.01

Published: Feb. 25, 2011

Modified: Apr. 11, 2025
10.0

CRITICAL

CVE-2024-24576

Rust is a programming language. The Rust Security Response WG was notified that the Rust standard library prior to version 1.77.2 did not properly escape arguments when invoking batch files (with the `bat` and `cmd` extensions) on Windows using the `Comma...

Affected Products : rust
Published: Apr. 09, 2024

Modified: Nov. 21, 2024
10.0

HIGH

CVE-2018-14618

curl before version 7.61.1 is vulnerable to a buffer overrun in the NTLM authentication code. The internal function Curl_ntlm_core_mk_nt_hash multiplies the length of the password by two (SUM) to figure out how large temporary storage area to allocate fro...

Affected Products : ubuntu_linux enterprise_linux debian_linux curl libcurl
EPSS Score: %0.50

Published: Sep. 05, 2018

Modified: Nov. 21, 2024
10.0

HIGH

CVE-2016-1659

Multiple unspecified vulnerabilities in Google Chrome before 50.0.2661.75 allow attackers to cause a denial of service or possibly have other impact via unknown vectors....

Affected Products : ubuntu_linux debian_linux leap chrome linux_enterprise
EPSS Score: %2.36

Published: Apr. 18, 2016

Modified: Apr. 12, 2025
10.0

HIGH

CVE-2013-0402

Heap-based buffer overflow in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and JavaFX 2.2.7 and earlier allows remote attackers to execute arbitrary code via unspecified vectors related to JavaFX, as demonstrated ...

Affected Products : jdk jre javafx
EPSS Score: %7.53

Published: Mar. 08, 2013

Modified: Apr. 11, 2025

Showing 20 of 291358 Results

1
...
260
261
262
263
264
265
266
...
14568

Latest CVE Feed

10.0

10.0

10.0

10.0

10.0

10.0

10.0

10.0

10.0

10.0

10.0

10.0

10.0

10.0

10.0

10.0

10.0

10.0

10.0

10.0

Theme Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable