Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 10.0

    HIGH
    CVE-1999-0509

    Perl, sh, csh, or other shell interpreters are installed in the cgi-bin directory on a WWW site, which allows remote attackers to execute arbitrary commands.... Read more

    Affected Products :
    • Published: May. 29, 1996
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0443

    Patrol management software allows a remote attacker to conduct a replay attack to steal the administrator password.... Read more

    Affected Products : patrol_agent
    • Published: Apr. 01, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0583

    There is a one-way or two-way trust relationship between Windows NT domains.... Read more

    Affected Products :
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2019-2256

    An unprivileged user can craft a bitstream such that the payload encoded in the bitstream gains code execution in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdrag... Read more

    • Published: Jun. 14, 2019
    • Modified: Nov. 21, 2024

  • 10.0

    HIGH
    CVE-2019-2311

    Possible buffer overflow in WLAN handler due to lack of validation of destination buffer size before copying it in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdra... Read more

    • Published: Mar. 05, 2020
    • Modified: Nov. 21, 2024

  • 10.0

    HIGH
    CVE-1999-0591

    An event log in Windows NT has inappropriate access permissions.... Read more

    Affected Products :
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0599

    A network intrusion detection system (IDS) does not properly handle packets with improper sequence numbers.... Read more

    Affected Products :
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0515

    An unrestricted remote trust relationship for Unix systems has been set up, e.g. by using a + sign in /etc/hosts.equiv.... Read more

    Affected Products :
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2019-2205

    In ProxyResolverV8::SetPacScript of proxy_resolver_v8.cc, there is a possible memory corruption due to a use after free. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitati... Read more

    Affected Products : android
    • Published: Nov. 13, 2019
    • Modified: Nov. 21, 2024

  • 10.0

    HIGH
    CVE-2008-3653

    Multiple unspecified vulnerabilities in TikiWiki CMS/Groupware before 2.0 have unknown impact and attack vectors.... Read more

    Affected Products : tikiwiki_cms\/groupware
    • Published: Aug. 13, 2008
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-1999-0361

    NetWare version of LaserFiche stores usernames and passwords unencrypted, and allows administrative changes without logging.... Read more

    Affected Products :
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0407

    By default, IIS 4.0 has a virtual directory /IISADMPWD which contains files that can be used as proxies for brute force password attacks, or to identify valid users on the system.... Read more

    Affected Products : internet_information_server iis
    • Published: Feb. 09, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0356

    ControlIT v4.5 and earlier uses weak encryption to store usernames and passwords in an address book.... Read more

    Affected Products :
    • Published: Jan. 25, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2011-3490

    Multiple stack-based buffer overflows in service.exe in Measuresoft ScadaPro 4.0.0 and earlier allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long command to port 11234, as demonstrated with the TF co... Read more

    Affected Products : scadapro scadapro_server
    • Published: Sep. 16, 2011
    • Modified: Apr. 11, 2025

  • 10.0

    HIGH
    CVE-1999-0394

    DPEC Online Courseware allows an attacker to change another user's password without knowing the original password.... Read more

    Affected Products :
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0250

    Denial of service in Qmail through long SMTP commands.... Read more

    Affected Products : qmail
    • Published: Jul. 01, 1997
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0268

    MetaInfo MetaWeb web server allows users to upload, execute, and read scripts.... Read more

    Affected Products : metaweb
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0220

    Attackers can do a denial of service of IRC by crashing the server.... Read more

    Affected Products :
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0283

    The Java Web Server would allow remote users to obtain the source code for CGI programs.... Read more

    Affected Products :
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0232

    Buffer overflow in NCSA WebServer (version 1.5c) gives remote access.... Read more

    Affected Products : ncsa_httpd
    • Published: Feb. 01, 1995
    • Modified: Apr. 03, 2025
Showing 20 of 292803 Results