Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 10.0

    HIGH
    CVE-2000-0964

    Buffer overflow in the web administration service for the HiNet LP5100 IP-phone allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long GET request.... Read more

    Affected Products : hinet_lp
    • EPSS Score: %1.71
    • Published: Dec. 19, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    CRITICAL
    CVE-2019-3905

    Zoho ManageEngine ADSelfService Plus 5.x before build 5703 has SSRF.... Read more

    Affected Products : manageengine_adselfservice_plus
    • EPSS Score: %1.22
    • Published: Jan. 03, 2019
    • Modified: May. 30, 2025

  • 10.0

    HIGH
    CVE-1999-0950

    Buffer overflow in WFTPD FTP server allows remote attackers to gain root access via a series of MKD and CWD commands that create nested directories.... Read more

    Affected Products : wftpd
    • EPSS Score: %5.13
    • Published: Oct. 28, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    CRITICAL
    CVE-2019-3809

    A flaw was found in Moodle versions 3.1 to 3.1.15 and earlier unsupported versions. The mybackpack functionality allowed setting the URL of badges, when it should be restricted to the Mozilla Open Badges backpack URL. This resulted in the possibility of b... Read more

    Affected Products : moodle
    • EPSS Score: %0.24
    • Published: Mar. 25, 2019
    • Modified: Nov. 21, 2024

  • 10.0

    HIGH
    CVE-2000-0818

    The default installation for the Oracle listener program 7.3.4, 8.0.6, and 8.1.6 allows an attacker to cause logging information to be appended to arbitrary files and execute commands via the SET TRC_FILE or SET LOG_FILE commands.... Read more

    Affected Products : listener
    • EPSS Score: %0.72
    • Published: Dec. 19, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0803

    GNU Groff uses the current working directory to find a device description file, which allows a local user to gain additional privileges by including a malicious postpro directive in the description file, which is executed when another user runs groff.... Read more

    Affected Products : groff
    • EPSS Score: %0.84
    • Published: Dec. 19, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0747

    The logrotate script for OpenLDAP before 1.2.11 in Conectiva Linux sends an improper signal to the kernel log daemon (klogd) and kills it.... Read more

    Affected Products : linux
    • EPSS Score: %0.46
    • Published: Oct. 20, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0690

    Auction Weaver CGI script 1.02 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the fromfile parameter.... Read more

    Affected Products : auction_weaver
    • EPSS Score: %5.42
    • Published: Oct. 20, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0586

    Buffer overflow in Dalnet IRC server 4.6.5 allows remote attackers to cause a denial of service or execute arbitrary commands via the SUMMON command.... Read more

    Affected Products : ircd
    • EPSS Score: %5.06
    • Published: Jun. 29, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0587

    The privpath directive in glftpd 1.18 allows remote attackers to bypass access restrictions for directories by using the file name completion capability.... Read more

    Affected Products : glftpd
    • EPSS Score: %0.40
    • Published: Jun. 26, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0638

    bb-hostsvc.sh in Big Brother 1.4h1 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) attack on the HOSTSVC parameter.... Read more

    Affected Products : big_brother
    • EPSS Score: %4.22
    • Published: Jul. 11, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2019-3707

    Dell EMC iDRAC9 versions prior to 3.30.30.30 contain an authentication bypass vulnerability. A remote attacker may potentially exploit this vulnerability to bypass authentication and gain access to the system by sending specially crafted input data to the... Read more

    Affected Products : idrac9_firmware
    • EPSS Score: %1.79
    • Published: Apr. 26, 2019
    • Modified: Nov. 21, 2024

  • 10.0

    HIGH
    CVE-2000-0527

    userreg.cgi CGI program in MailStudio 2000 2.0 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters.... Read more

    Affected Products : mailstudio_2000
    • EPSS Score: %4.29
    • Published: Jun. 09, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0506

    The "capabilities" feature in Linux before 2.2.16 allows local users to cause a denial of service or gain privileges by setting the capabilities to prevent a setuid program from dropping privileges, aka the "Linux kernel setuid/setcap vulnerability."... Read more

    Affected Products : linux_kernel
    • EPSS Score: %2.33
    • Published: Jun. 09, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0585

    ISC DHCP client program dhclient allows remote attackers to execute arbitrary commands via shell metacharacters.... Read more

    Affected Products : dhcp_client
    • EPSS Score: %9.54
    • Published: Jun. 24, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0573

    The lreply function in wu-ftpd 2.6.0 and earlier does not properly cleanse an untrusted format string, which allows remote attackers to execute arbitrary commands via the SITE EXEC command.... Read more

    Affected Products : hp-ux
    • EPSS Score: %91.38
    • Published: Jul. 07, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0551

    The file transfer mechanism in Danware NetOp 6.0 does not provide authentication, which allows remote attackers to access and modify arbitrary files.... Read more

    Affected Products : netop
    • EPSS Score: %0.71
    • Published: May. 23, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2019-3705

    Dell EMC iDRAC6 versions prior to 2.92, iDRAC7/iDRAC8 versions prior to 2.61.60.60, and iDRAC9 versions prior to 3.20.21.20, 3.21.24.22, 3.21.26.22 and 3.23.23.23 contain a stack-based buffer overflow vulnerability. An unauthenticated remote attacker may ... Read more

    • EPSS Score: %3.80
    • Published: Apr. 26, 2019
    • Modified: Nov. 21, 2024

  • 10.0

    HIGH
    CVE-2000-0509

    Buffer overflows in the finger and whois demonstration scripts in Sambar Server 4.3 allow remote attackers to execute arbitrary commands via a long hostname.... Read more

    Affected Products : sambar_server
    • EPSS Score: %2.60
    • Published: Jun. 01, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0405

    Buffer overflow in L0pht AntiSniff allows remote attackers to execute arbitrary commands via a malformed DNS response packet.... Read more

    Affected Products : antisniff
    • EPSS Score: %7.85
    • Published: May. 16, 2000
    • Modified: Apr. 03, 2025
Showing 20 of 292508 Results