Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 10.0

    HIGH
    CVE-1999-0801

    BMC Patrol allows remote attackers to gain access to an agent by spoofing frames.... Read more

    Affected Products : patrol_agent
    • Published: Apr. 09, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0810

    Denial of service in Samba NETBIOS name service daemon (nmbd).... Read more

    Affected Products : samba
    • Published: Jul. 21, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0722

    The default configuration of Cobalt RaQ2 servers allows remote users to install arbitrary software packages.... Read more

    Affected Products : cobalt_raq_2
    • Published: Aug. 08, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0741

    QMS CrownNet Unix Utilities for 2060 allows root to log on without a password.... Read more

    Affected Products : crownnet_unix_utilities
    • Published: Aug. 19, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0759

    Buffer overflow in FuseMAIL POP service via long USER and PASS commands.... Read more

    Affected Products : fusemail
    • Published: Sep. 13, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0061

    Internet Explorer 5 does not modify the security zone for a document that is being loaded into a window until after the document has been loaded, which could allow remote attackers to execute Javascript in a different security context while the document i... Read more

    Affected Products : internet_explorer
    • Published: Jan. 07, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0244

    The Citrix ICA (Independent Computing Architecture) protocol uses weak encryption (XOR) for user authentication.... Read more

    Affected Products : metaframe winframe
    • Published: Mar. 29, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0514

    GSSFTP FTP daemon in Kerberos 5 1.1.x does not properly restrict access to some FTP commands, which allows remote attackers to cause a denial of service, and local users to gain root privileges.... Read more

    Affected Products : kerberos_5
    • Published: Jun. 14, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0798

    The truncate function in IRIX 6.x does not properly check for privileges when the file is in the xfs file system, which allows local users to delete the contents of arbitrary files.... Read more

    Affected Products : irix
    • Published: Oct. 20, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0733

    Telnetd telnet server in IRIX 5.2 through 6.1 does not properly cleans user-injected format strings, which allows remote attackers to execute arbitrary commands via a long RLD variable in the IAC-SB-TELOPT_ENVIRON request.... Read more

    Affected Products : irix
    • Published: Oct. 20, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-1074

    csstart program in iCal 2.1 Patch 2 uses relative pathnames to install the libsocket and libnsl libraries, which could allow the icsuser account to gain root privileges by creating a Trojan Horse library in the current or parent directory.... Read more

    Affected Products : iplanet_ical
    • Published: Dec. 11, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-1071

    The GUI installation for iCal 2.1 Patch 2 disables access control for the X server using an "xhost +" command, which allows remote attackers to monitor X Windows events and gain privileges.... Read more

    Affected Products : iplanet_ical
    • Published: Dec. 11, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0973

    Buffer overflow in curl earlier than 6.0-1.1, and curl-ssl earlier than 6.0-1.2, allows remote attackers to execute arbitrary commands by forcing a long error message to be generated.... Read more

    Affected Products : curl curl
    • Published: Dec. 19, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0306

    Buffer overflow in calserver in SCO OpenServer allows remote attackers to gain root access via a long message.... Read more

    Affected Products : openserver
    • Published: Mar. 12, 2001
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2001-0203

    Watchguard Firebox II firewall allows users with read-only access to gain read-write access, and administrative privileges, by accessing a file that contains hashed passphrases, and using the hashes during authentication.... Read more

    Affected Products : firebox_ii
    • Published: Mar. 26, 2001
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2001-0291

    Buffer overflow in post-query sample CGI program allows remote attackers to execute arbitrary commands via an HTTP POST request that contains at least 10001 parameters.... Read more

    Affected Products :
    • Published: May. 03, 2001
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2001-1291

    The telnet server for 3Com hardware such as PS40 SuperStack II does not delay or disconnect remote attackers who provide an incorrect username or password, which makes it easier to break into the server via brute force password guessing.... Read more

    • Published: Jul. 12, 2001
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2001-1367

    The checkAccess function in PHPSlice 0.1.4, and all other versions between 0.1.1 and 0.1.6, does not properly verify the administrative access level, which could allow remote attackers to gain privileges.... Read more

    Affected Products : phpslice
    • Published: Jul. 19, 2001
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2001-1355

    Buffer overflows in NetWin Authentication Module (NWAuth) 3.0b and earlier, as implemented in DMail, SurgeFTP, and possibly other packages, could allow attackers to execute arbitrary code via long arguments to (1) the -del command or (2) the -lookup comma... Read more

    Affected Products : surgeftp dmail
    • Published: Jul. 20, 2001
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2001-1356

    NetWin SurgeFTP 2.0f and earlier encrypts passwords using weak hashing, a fixed salt value and modulo 40 calculations, which allows remote attackers to conduct brute force password guessing attacks against the administrator account on port 7021.... Read more

    Affected Products : surgeftp
    • Published: Aug. 04, 2001
    • Modified: Apr. 03, 2025
Showing 20 of 294528 Results