Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 10.0

    HIGH
    CVE-1999-1293

    mod_proxy in Apache 1.2.5 and earlier allows remote attackers to cause a denial of service via malformed FTP commands, which causes Apache to dump core.... Read more

    Affected Products : http_server
    • EPSS Score: %1.23
    • Published: Dec. 31, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-1190

    Buffer overflow in POP3 server of Admiral Systems EmailClub 1.05 allows remote attackers to execute arbitrary commands via a long "From" header in an e-mail message.... Read more

    Affected Products : emailclub
    • EPSS Score: %4.85
    • Published: Nov. 15, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2007-4351

    Off-by-one error in the ippReadIO function in cups/ipp.c in CUPS 1.3.3 allows remote attackers to cause a denial of service (crash) via a crafted (1) textWithLanguage or (2) nameWithLanguage Internet Printing Protocol (IPP) tag, leading to a stack-based b... Read more

    Affected Products : cups
    • EPSS Score: %23.65
    • Published: Oct. 31, 2007
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2008-3703

    The management console in the Volume Manager Scheduler Service (aka VxSchedService.exe) in Symantec Veritas Storage Foundation for Windows (SFW) 5.0, 5.0 RP1a, and 5.1 accepts NULL NTLMSSP authentication, which allows remote attackers to execute arbitrary... Read more

    Affected Products : veritas_storage_foundation
    • EPSS Score: %24.54
    • Published: Aug. 18, 2008
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-1999-1237

    Multiple buffer overflows in smbvalid/smbval SMB authentication library, as used in Apache::AuthenSmb and possibly other modules, allows remote attackers to execute arbitrary commands via (1) a long username, (2) a long password, and (3) other unspecified... Read more

    Affected Products : http_server
    • EPSS Score: %0.42
    • Published: Jun. 06, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-1138

    SCO UNIX System V/386 Release 3.2, and other SCO products, installs the home directories (1) /tmp for the dos user, and (2) /usr/tmp for the asg user, which allows other users to gain access to those accounts since /tmp and /usr/tmp are world-writable.... Read more

    • EPSS Score: %0.72
    • Published: Sep. 17, 1993
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2007-4703

    The Application Firewall in Apple Mac OS X 10.5 does not prevent a root process from accepting incoming connections, even when "Block incoming connections" has been set for its associated executable, which might allow remote attackers or local root proces... Read more

    Affected Products : mac_os_x mac_os_x_server
    • EPSS Score: %0.66
    • Published: Nov. 15, 2007
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-1999-1049

    ARCserve NT agents use weak encryption (XOR) for passwords, which allows remote attackers to sniff the authentication request to port 6050 and decrypt the password.... Read more

    Affected Products : arcserve_backup
    • EPSS Score: %0.46
    • Published: Feb. 21, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-1086

    Novell 5 and earlier, when running over IPX with a packet signature level less than 3, allows remote attackers to gain administrator privileges by spoofing the MAC address in IPC fragmented packets that make NetWare Core Protocol (NCP) calls.... Read more

    Affected Products : netware
    • EPSS Score: %1.40
    • Published: Jul. 15, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-1063

    CDomain whois_raw.cgi whois CGI script allows remote attackers to execute arbitrary commands via shell metacharacters in the fqdn parameter.... Read more

    Affected Products : cdomainfree
    • EPSS Score: %4.42
    • Published: Jun. 01, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2008-3694

    Unspecified vulnerability in a certain ActiveX control in VMware Workstation 5.5.x before 5.5.8 build 108000, VMware Workstation 6.0.x before 6.0.5 build 109488, VMware Player 1.x before 1.0.8 build 108000, VMware Player 2.x before 2.0.5 build 109488, VMw... Read more

    Affected Products : player server workstation ace
    • EPSS Score: %1.24
    • Published: Sep. 03, 2008
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-1999-0974

    Buffer overflow in Solaris snoop allows remote attackers to gain root privileges via GETQUOTA requests to the rpc.rquotad service.... Read more

    Affected Products : solaris sunos
    • EPSS Score: %2.44
    • Published: Dec. 09, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-1064

    Multiple buffer overflows in WindowMaker 0.52 through 0.60.0 allow attackers to cause a denial of service and possibly execute arbitrary commands by executing WindowMaker with a long program name (argv[0]).... Read more

    Affected Products : windowmaker
    • EPSS Score: %0.67
    • Published: Aug. 22, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0967

    Buffer overflow in the HTML library used by Internet Explorer, Outlook Express, and Windows Explorer via the res: local resource protocol.... Read more

    • EPSS Score: %17.92
    • Published: Nov. 01, 1997
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0973

    Buffer overflow in Solaris snoop program allows remote attackers to gain root privileges via a long domain name when snoop is running in verbose mode.... Read more

    Affected Products : solaris sunos
    • EPSS Score: %3.14
    • Published: Dec. 07, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2008-3685

    Directory traversal vulnerability in aws_tmxn.exe in the Admin Agent service in the server in EMC Documentum ApplicationXtender Workflow, possibly 5.40 SP1 and earlier, allows remote attackers to upload arbitrary files, and execute arbitrary code, via dir... Read more

    • EPSS Score: %0.70
    • Published: Oct. 22, 2009
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-1999-0987

    Windows NT does not properly download a system policy if the domain user logs into the domain with a space at the end of the domain name.... Read more

    Affected Products : windows_nt
    • EPSS Score: %5.51
    • Published: Nov. 18, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0894

    Red Hat Linux screen program does not use Unix98 ptys, allowing local users to write to other terminals.... Read more

    Affected Products : linux
    • EPSS Score: %0.41
    • Published: Jan. 04, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2008-4296

    The Cisco Linksys WRT350N with firmware 1.0.3.7 has "admin" as its default password for the "admin" account, which makes it easier for remote attackers to obtain access.... Read more

    Affected Products : linksys_wrt350n
    • EPSS Score: %0.80
    • Published: Sep. 27, 2008
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-1999-0896

    Buffer overflow in RealNetworks RealServer administration utility allows remote attackers to execute arbitrary commands via a long username and password.... Read more

    Affected Products : realserver_g2
    • EPSS Score: %7.21
    • Published: Nov. 04, 1999
    • Modified: Apr. 03, 2025
Showing 20 of 292495 Results