Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 10.0

    HIGH
    CVE-2009-0263

    Multiple buffer overflows in Winamp 5.541 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) a large Common Chunk (COMM) header value in an AIFF file and (2) a large invalid value in an MP3 file.... Read more

    Affected Products : winamp
    • EPSS Score: %5.38
    • Published: Jan. 23, 2009
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2009-0210

    Buffer overflow in the MLF application in AREVA e-terrahabitat 5.7 and earlier allows remote attackers to execute arbitrary commands or cause a denial of service (system crash) via unspecified vectors, aka PD28578.... Read more

    Affected Products : e-terrahabitat
    • EPSS Score: %2.46
    • Published: Feb. 08, 2009
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2009-0345

    Unspecified vulnerability in the Embedded Lights Out Manager (ELOM) on the Sun Fire X2100 M2 and X2200 M2 x86 platforms before SP/BMC firmware 3.20 allows remote attackers to obtain privileged ELOM login access or execute arbitrary Service Processor (SP) ... Read more

    Affected Products : fire_x2100_m2 fire_x2200_m2
    • EPSS Score: %2.30
    • Published: Jan. 29, 2009
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2009-0216

    GE Fanuc iFIX 5.0 and earlier relies on client-side authentication involving a weakly encrypted local password file, which allows remote attackers to bypass intended access restrictions and start privileged server login sessions by recovering a password o... Read more

    Affected Products : ifix
    • EPSS Score: %1.47
    • Published: Feb. 13, 2009
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2009-0178

    Unspecified vulnerability in IBM Hardware Management Console (HMC) 7 release 3.2.0 SP1 has unknown impact and attack vectors.... Read more

    Affected Products : hardware_management_console
    • EPSS Score: %0.98
    • Published: Jan. 20, 2009
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2009-0183

    Stack-based buffer overflow in Remote Control Server in Free Download Manager (FDM) 2.5 Build 758 and 3.0 Build 844 allows remote attackers to execute arbitrary code via a long Authorization header in an HTTP request.... Read more

    • EPSS Score: %79.52
    • Published: Feb. 03, 2009
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2009-0119

    Buffer overflow in Microsoft Windows XP SP3 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted .chm file.... Read more

    Affected Products : windows_xp
    • EPSS Score: %29.15
    • Published: Jan. 14, 2009
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2009-0311

    The Backbone service (ftbackbone.exe) in EMC AutoStart before 5.3 SP2 allows remote attackers to execute arbitrary code via a packet with a crafted value that is dereferenced as a function pointer.... Read more

    Affected Products : autostart
    • EPSS Score: %10.29
    • Published: Jan. 27, 2009
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2009-0043

    The smmsnmpd service in CA Service Metric Analysis r11.0 through r11.1 SP1 and Service Level Management 3.5 does not properly restrict access, which allows remote attackers to execute arbitrary commands via unspecified vectors.... Read more

    • EPSS Score: %29.18
    • Published: Jan. 08, 2009
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2008-7319

    The Net::Ping::External extension through 0.15 for Perl does not properly sanitize arguments (e.g., invalid hostnames) containing shell metacharacters before use of backticks in External.pm, allowing for shell command injection and arbitrary command execu... Read more

    Affected Products : net-ping-external
    • EPSS Score: %4.13
    • Published: Nov. 07, 2017
    • Modified: Apr. 20, 2025

  • 10.0

    HIGH
    CVE-2009-0133

    Buffer overflow in Microsoft HTML Help Workshop 4.74 and earlier allows context-dependent attackers to execute arbitrary code via a .hhp file with a long "Index file" field, possibly a related issue to CVE-2006-0564.... Read more

    Affected Products : html_help_workshop
    • EPSS Score: %70.80
    • Published: Jan. 15, 2009
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2008-7230

    Unspecified vulnerability in Small Footprint CIM Broker (SFCB) before 1.2.5 has unknown impact and attack vectors.... Read more

    Affected Products : small_footprint_cim_broker
    • EPSS Score: %0.34
    • Published: Sep. 14, 2009
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2008-7232

    Buffer overflow in the report function in xtacacsd 4.1.2 and earlier allows remote attackers to execute arbitrary code via a crafted CONNECT TACACS command.... Read more

    Affected Products : xtacacsd
    • EPSS Score: %55.75
    • Published: Sep. 14, 2009
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2008-7148

    Unspecified vulnerability in Synfig Animation Studio before 0.61.08 allows attackers to execute arbitrary code via a crafted .sif file.... Read more

    Affected Products : synfigstudio
    • EPSS Score: %0.71
    • Published: Sep. 01, 2009
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2008-7189

    Multiple unspecified vulnerabilities in Local Media Browser before 0.1 have unknown impact and attack vectors related to "Security holes."... Read more

    Affected Products : local_media_browser
    • EPSS Score: %0.34
    • Published: Sep. 09, 2009
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2008-7190

    Unspecified vulnerability in Adium before 1.2 has unknown impact and attack vectors related to javascript: URLs, possibly cross-site scripting (XSS).... Read more

    Affected Products : adium
    • EPSS Score: %0.40
    • Published: Sep. 09, 2009
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2008-7174

    Multiple buffer overflows in the Jura Internet Connection Kit for the Jura Impressa F90 coffee maker allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors related to improper use of the get... Read more

    • EPSS Score: %3.45
    • Published: Sep. 08, 2009
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2008-7109

    The Scanner File Utility (aka listener) in Kyocera Mita (KM) 3.3.0.1 allows remote attackers to bypass authorization and upload arbitrary files to the client system via a modified program that does not prompt the user for a password.... Read more

    Affected Products : scanner_file_utility
    • EPSS Score: %3.77
    • Published: Aug. 28, 2009
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2008-7149

    Unspecified vulnerability in AgileWiki before 0.10.1 has unknown impact and attack vectors related to passwords.... Read more

    Affected Products : agilewiki
    • EPSS Score: %0.33
    • Published: Sep. 01, 2009
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2008-7144

    Multiple unspecified vulnerabilities in RARLAB WinRAR before 3.71 have unknown impact and attack vectors related to crafted (1) ACE, (2) ARJ, (3) BZ2, (4) CAB, (5) GZ, (6) LHA, (7) RAR, (8) TAR, or (9) ZIP files, as demonstrated by the OUSPG PROTOS GENOME... Read more

    Affected Products : winrar
    • EPSS Score: %1.13
    • Published: Sep. 01, 2009
    • Modified: Apr. 09, 2025
Showing 20 of 292495 Results