Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 10.0

    HIGH
    CVE-2006-3708

    Unspecified vulnerability in OC4J for Oracle Application Server 9.0.2.3, 9.0.3.1, 9.0.4.2, 10.1.2.0.2, and 10.1.2.1 has unknown impact and attack vectors, aka Oracle Vuln# AS03.... Read more

    Affected Products : application_server
    • EPSS Score: %4.23
    • Published: Jul. 21, 2006
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2012-0507

    Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect confidentiality, integrity, and availability via u... Read more

    • Actively Exploited
    • EPSS Score: %93.72
    • Published: Jun. 07, 2012
    • Modified: Apr. 11, 2025

  • 10.0

    HIGH
    CVE-2013-2728

    Adobe Flash Player before 10.3.183.86 and 11.x before 11.7.700.202 on Windows and Mac OS X, before 10.3.183.86 and 11.x before 11.2.202.285 on Linux, before 11.1.111.54 on Android 2.x and 3.x, and before 11.1.115.58 on Android 4.x; Adobe AIR before 3.7.0.... Read more

    • EPSS Score: %4.00
    • Published: May. 16, 2013
    • Modified: Apr. 11, 2025

  • 10.0

    HIGH
    CVE-2013-2730

    Buffer overflow in Adobe Reader and Acrobat 9.x before 9.5.5, 10.x before 10.1.7, and 11.x before 11.0.03 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2013-2733.... Read more

    Affected Products : acrobat acrobat_reader
    • EPSS Score: %80.57
    • Published: May. 16, 2013
    • Modified: Apr. 11, 2025

  • 10.0

    HIGH
    CVE-2005-2249

    Multiple unknown vulnerabilities in Jinzora 2.0.1 have unknown impact and attack vectors, possibly involving a PHP file inclusion vulnerability.... Read more

    Affected Products : jinzora
    • EPSS Score: %0.46
    • Published: Jul. 13, 2005
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2005-3016

    Multiple unspecified vulnerabilities in the WYSIWYG editor in PHP-Nuke before 7.9 Final have unknown impact and attack vectors.... Read more

    Affected Products : php-nuke
    • EPSS Score: %0.02
    • Published: Sep. 21, 2005
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2016-0854

    Unrestricted file upload vulnerability in the uploadImageCommon function in the UploadAjaxAction script in the WebAccess Dashboard Viewer in Advantech WebAccess before 8.1 allows remote attackers to write to files of arbitrary types via unspecified vector... Read more

    Affected Products : webaccess advantech_webaccess
    • EPSS Score: %73.70
    • Published: Jan. 15, 2016
    • Modified: Apr. 12, 2025

  • 10.0

    HIGH
    CVE-2007-3828

    Unspecified vulnerability in mDNSResponder in Apple Mac OS X allows remote attackers to execute arbitrary code via unspecified vectors, a related issue to CVE-2007-2386.... Read more

    Affected Products : mac_os_x mac_os_x
    • EPSS Score: %2.71
    • Published: Jul. 17, 2007
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-1999-0814

    Red Hat pump DHCP client allows remote attackers to gain root access in some configurations.... Read more

    Affected Products : linux
    • EPSS Score: %0.94
    • Published: Aug. 11, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0017

    Buffer overflow in Linux linuxconf package allows remote attackers to gain root privileges via a long parameter.... Read more

    Affected Products : linux
    • EPSS Score: %2.98
    • Published: Dec. 21, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2001-0241

    Buffer overflow in Internet Printing ISAPI extension in Windows 2000 allows remote attackers to gain root privileges via a long print request that is passed to the extension through IIS 5.0.... Read more

    Affected Products : windows_2000
    • EPSS Score: %88.82
    • Published: Jun. 27, 2001
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2006-4830

    Directory traversal vulnerability in EditBlogTemplatesPlugin.java in David Czarnecki Blojsom 2.30 allows remote attackers to have an unknown impact by sending an HTTP request with a certain value of blogTemplate.... Read more

    Affected Products : blojsom
    • EPSS Score: %1.67
    • Published: Sep. 15, 2006
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2003-0252

    Off-by-one error in the xlog function of mountd in the Linux NFS utils package (nfs-utils) before 1.0.4 allows remote attackers to cause a denial of service and possibly execute arbitrary code via certain RPC requests to mountd that do not contain newline... Read more

    Affected Products : nfs-utils
    • EPSS Score: %16.11
    • Published: Aug. 18, 2003
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0950

    Buffer overflow in WFTPD FTP server allows remote attackers to gain root access via a series of MKD and CWD commands that create nested directories.... Read more

    Affected Products : wftpd
    • EPSS Score: %5.13
    • Published: Oct. 28, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0585

    ISC DHCP client program dhclient allows remote attackers to execute arbitrary commands via shell metacharacters.... Read more

    Affected Products : dhcp_client
    • EPSS Score: %9.54
    • Published: Jun. 24, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2001-0021

    MailMan Webmail 3.0.25 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the alternate_template parameter.... Read more

    Affected Products : mailman_webmail
    • EPSS Score: %9.54
    • Published: Feb. 16, 2001
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2007-1457

    Buffer overflow in the urarlib_get function in Christian Scheurer UniquE RAR File Library (unrarlib, aka URARFileLib) 0.4 allows context-dependent attackers to execute arbitrary code via a long (1) filename, (2) rarfile, or (3) libpassword argument.... Read more

    Affected Products : unrarlib urarfilelib
    • EPSS Score: %1.53
    • Published: Mar. 14, 2007
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2001-1240

    The default configuration of sudo in Engarde Secure Linux 1.0.1 allows any user in the admin group to run certain commands that could be leveraged to gain full root access.... Read more

    Affected Products : secure_linux
    • EPSS Score: %0.46
    • Published: Jul. 11, 2001
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2007-4351

    Off-by-one error in the ippReadIO function in cups/ipp.c in CUPS 1.3.3 allows remote attackers to cause a denial of service (crash) via a crafted (1) textWithLanguage or (2) nameWithLanguage Internet Printing Protocol (IPP) tag, leading to a stack-based b... Read more

    Affected Products : cups
    • EPSS Score: %23.65
    • Published: Oct. 31, 2007
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2007-4703

    The Application Firewall in Apple Mac OS X 10.5 does not prevent a root process from accepting incoming connections, even when "Block incoming connections" has been set for its associated executable, which might allow remote attackers or local root proces... Read more

    Affected Products : mac_os_x mac_os_x_server
    • EPSS Score: %0.66
    • Published: Nov. 15, 2007
    • Modified: Apr. 09, 2025
Showing 20 of 291750 Results