Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 10.0

    HIGH
    CVE-2014-0561

    Heap-based buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-0567.... Read more

    Affected Products : mac_os_x acrobat acrobat_reader windows
    • EPSS Score: %41.35
    • Published: Sep. 17, 2014
    • Modified: Apr. 12, 2025

  • 10.0

    HIGH
    CVE-2007-4691

    The NSURL component in Apple Mac OS X 10.4 through 10.4.10 performs case-sensitive comparisons that allow attackers to bypass intended restrictions for local file system URLs.... Read more

    Affected Products : mac_os_x mac_os_x_server
    • EPSS Score: %0.52
    • Published: Nov. 15, 2007
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2013-2726

    Adobe Reader and Acrobat 9.x before 9.5.5, 10.x before 10.1.7, and 11.x before 11.0.03 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2013-2718, CVE-20... Read more

    Affected Products : acrobat acrobat_reader
    • EPSS Score: %18.88
    • Published: May. 16, 2013
    • Modified: Apr. 11, 2025

  • 10.0

    HIGH
    CVE-2008-2641

    Unspecified vulnerability in Adobe Reader and Acrobat 7.0.9 and earlier, and 8.0 through 8.1.2, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unknown vectors, related to an "input validatio... Read more

    Affected Products : acrobat_reader acrobat_3d
    • EPSS Score: %38.74
    • Published: Jun. 25, 2008
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2005-4459

    Heap-based buffer overflow in the NAT networking components vmnat.exe and vmnet-natd in VMWare Workstation 5.5, GSX Server 3.2, ACE 1.0.1, and Player 1.0 allows remote authenticated attackers, including guests, to execute arbitrary code via crafted (1) EP... Read more

    Affected Products : player workstation ace gsx_server
    • EPSS Score: %63.37
    • Published: Dec. 21, 2005
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2006-0316

    Buffer overflow in YGPPicFinder.DLL in AOL You've Got Pictures (YGP) Picture Finder Tool ActiveX Control, as used in AOL 8.0, 8.0 Plus, and 9.0 Classic, allows remote attackers to execute arbitrary code via unspecified vectors.... Read more

    Affected Products : aol_client_software
    • EPSS Score: %37.65
    • Published: Jan. 19, 2006
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2006-2496

    Buffer overflow in iMonitor 2.4 in Novell eDirectory 8.8 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via unknown attack vectors.... Read more

    Affected Products : edirectory imonitor
    • EPSS Score: %24.92
    • Published: May. 20, 2006
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2001-0353

    Buffer overflow in the line printer daemon (in.lpd) for Solaris 8 and earlier allows local and remote attackers to gain root privileges via a "transfer job" routine.... Read more

    Affected Products : solaris sunos
    • EPSS Score: %1.48
    • Published: Jul. 21, 2001
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2001-0414

    Buffer overflow in ntpd ntp daemon 4.0.99k and earlier (aka xntpd and xntp3) allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long readvar argument.... Read more

    Affected Products : ntpd xntp3
    • EPSS Score: %87.30
    • Published: Jun. 18, 2001
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2006-4571

    Multiple unspecified vulnerabilities in Firefox before 1.5.0.7, Thunderbird before 1.5.0.7, and SeaMonkey before 1.0.5 allow remote attackers to cause a denial of service (crash), corrupt memory, and possibly execute arbitrary code via unspecified vectors... Read more

    Affected Products : thunderbird seamonkey
    • EPSS Score: %9.63
    • Published: Sep. 15, 2006
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0011

    Denial of Service vulnerabilities in BIND 4.9 and BIND 8 Releases via CNAME record and zone transfer.... Read more

    Affected Products : aix sunos bind netbsd linux unixware openserver open_desktop unix asl_ux_4800 +1 more products
    • EPSS Score: %10.98
    • Published: Apr. 08, 1998
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-1999-0498

    TFTP is not running in a restricted directory, allowing a remote attacker to access sensitive information such as password files.... Read more

    Affected Products :
    • EPSS Score: %1.27
    • Published: Sep. 27, 1991
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0943

    Buffer overflow in OpenLink 3.2 allows remote attackers to gain privileges via a long GET request to the web configurator.... Read more

    Affected Products : openlink
    • EPSS Score: %3.14
    • Published: Oct. 15, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0287

    The BizDB CGI script bizdb-search.cgi allows remote attackers to execute arbitrary commands via shell metacharacters in the dbname parameter.... Read more

    Affected Products : technology_bizdb
    • EPSS Score: %5.42
    • Published: Apr. 12, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2004-0354

    Multiple format string vulnerabilities in GNU Anubis 3.6.0 through 3.6.2, 3.9.92 and 3.9.93 allow remote attackers to execute arbitrary code via format string specifiers in strings passed to (1) the info function in log.c, (2) the anubis_error function in... Read more

    Affected Products : anubis
    • EPSS Score: %6.24
    • Published: Nov. 23, 2004
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0826

    Buffer overflow in ddicgi.exe program in Mobius DocumentDirect for the Internet 1.2 allows remote attackers to execute arbitrary commands via a long GET request.... Read more

    Affected Products : documentdirect_for_the_internet
    • EPSS Score: %2.10
    • Published: Nov. 14, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2004-0523

    Multiple buffer overflows in krb5_aname_to_localname for MIT Kerberos 5 (krb5) 1.3.3 and earlier allow remote attackers to execute arbitrary code as root.... Read more

    • EPSS Score: %13.60
    • Published: Aug. 18, 2004
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2004-0541

    Buffer overflow in the ntlm_check_auth (NTLM authentication) function for Squid Web Proxy Cache 2.5.x and 3.x, when compiled with NTLM handlers enabled, allows remote attackers to execute arbitrary code via a long password ("pass" variable).... Read more

    Affected Products : squid_web_proxy_cache
    • EPSS Score: %78.28
    • Published: Aug. 06, 2004
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2004-1012

    The argument parser of the PARTIAL command in Cyrus IMAP Server 2.2.6 and earlier allows remote authenticated users to execute arbitrary code via a certain command ("body[p") that is treated as a different command ("body.peek") and causes an index increme... Read more

    • EPSS Score: %10.24
    • Published: Jan. 10, 2005
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2004-0987

    Buffer overflow in the process_menu function in yardradius 1.0.20 allows remote attackers to execute arbitrary code.... Read more

    Affected Products : yard_radius yard_radius
    • EPSS Score: %5.48
    • Published: Jan. 10, 2005
    • Modified: Apr. 03, 2025
Showing 20 of 291728 Results