Latest CVE Feed
-
10.0
HIGHCVE-1999-0461
Versions of rpcbind including Linux, IRIX, and Wietse Venema's rpcbind allow a remote attacker to insert and delete entries by spoofing a source address.... Read more
- Published: Jan. 28, 1999
- Modified: Apr. 03, 2025
-
10.0
HIGHCVE-1999-0580
The HKEY_LOCAL_MACHINE key in a Windows NT system has inappropriate, system-critical permissions.... Read more
Affected Products :- Published: Jan. 01, 1999
- Modified: Apr. 03, 2025
-
10.0
HIGHCVE-1999-0555
A Unix account with a name other than "root" has UID 0, i.e. root privileges.... Read more
Affected Products :- Published: Jan. 01, 1999
- Modified: Apr. 03, 2025
-
10.0
HIGHCVE-1999-0489
MSHTML.DLL in Internet Explorer 5.0 allows a remote attacker to paste a file name into the file upload intrinsic control, a variant of "untrusted scripted paste" as described in MS:MS98-013.... Read more
Affected Products : windows_nt- Published: May. 17, 1999
- Modified: Apr. 03, 2025
-
10.0
HIGHCVE-2019-2245
Possible integer underflow can happen when calculating length of elementary stream map from invalid packet length which is later used to read from input buffer in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapd... Read more
Affected Products : sdm660_firmware msm8996au_firmware sd_450_firmware sd_625_firmware sd_820_firmware sd_820a_firmware sd_835_firmware qcs605_firmware sd_675_firmware mdm9650_firmware +72 more products- Published: May. 24, 2019
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-1999-0526
An X server's access control is disabled (e.g. through an "xhost +" command) and allows anyone to connect to the server.... Read more
Affected Products : x11- Published: Jul. 01, 1997
- Modified: Apr. 03, 2025
-
10.0
HIGHCVE-1999-0509
Perl, sh, csh, or other shell interpreters are installed in the cgi-bin directory on a WWW site, which allows remote attackers to execute arbitrary commands.... Read more
Affected Products :- Published: May. 29, 1996
- Modified: Apr. 03, 2025
-
10.0
HIGHCVE-1999-0443
Patrol management software allows a remote attacker to conduct a replay attack to steal the administrator password.... Read more
Affected Products : patrol_agent- Published: Apr. 01, 1999
- Modified: Apr. 03, 2025
-
10.0
HIGHCVE-1999-0583
There is a one-way or two-way trust relationship between Windows NT domains.... Read more
Affected Products :- Published: Jan. 01, 1999
- Modified: Apr. 03, 2025
-
10.0
HIGHCVE-2019-2256
An unprivileged user can craft a bitstream such that the payload encoded in the bitstream gains code execution in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdrag... Read more
Affected Products : sd_8cx_firmware sdm660_firmware msm8996au_firmware sd_450_firmware sd_625_firmware sd_820_firmware sd_820a_firmware sd_835_firmware qcs605_firmware sd_675_firmware +60 more products- Published: Jun. 14, 2019
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2019-2311
Possible buffer overflow in WLAN handler due to lack of validation of destination buffer size before copying it in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdra... Read more
Affected Products : qca6574au_firmware sa6155p_firmware ipq8074_firmware qca6574_firmware qca6584au_firmware qca8081_firmware qca9886_firmware sdm660_firmware sm8150_firmware msm8996au_firmware +72 more products- Published: Mar. 05, 2020
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-1999-0591
An event log in Windows NT has inappropriate access permissions.... Read more
Affected Products :- Published: Jan. 01, 1999
- Modified: Apr. 03, 2025
-
10.0
HIGHCVE-1999-0599
A network intrusion detection system (IDS) does not properly handle packets with improper sequence numbers.... Read more
Affected Products :- Published: Jan. 01, 1999
- Modified: Apr. 03, 2025
-
10.0
HIGHCVE-1999-0515
An unrestricted remote trust relationship for Unix systems has been set up, e.g. by using a + sign in /etc/hosts.equiv.... Read more
Affected Products :- Published: Jan. 01, 1999
- Modified: Apr. 03, 2025
-
10.0
HIGHCVE-2019-2205
In ProxyResolverV8::SetPacScript of proxy_resolver_v8.cc, there is a possible memory corruption due to a use after free. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitati... Read more
Affected Products : android- Published: Nov. 13, 2019
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2008-3653
Multiple unspecified vulnerabilities in TikiWiki CMS/Groupware before 2.0 have unknown impact and attack vectors.... Read more
Affected Products : tikiwiki_cms\/groupware- Published: Aug. 13, 2008
- Modified: Apr. 09, 2025
-
10.0
HIGHCVE-1999-0361
NetWare version of LaserFiche stores usernames and passwords unencrypted, and allows administrative changes without logging.... Read more
Affected Products :- Published: Jan. 01, 1999
- Modified: Apr. 03, 2025
-
10.0
HIGHCVE-1999-0407
By default, IIS 4.0 has a virtual directory /IISADMPWD which contains files that can be used as proxies for brute force password attacks, or to identify valid users on the system.... Read more
- Published: Feb. 09, 1999
- Modified: Apr. 03, 2025
-
10.0
HIGHCVE-1999-0356
ControlIT v4.5 and earlier uses weak encryption to store usernames and passwords in an address book.... Read more
Affected Products :- Published: Jan. 25, 1999
- Modified: Apr. 03, 2025
-
10.0
HIGHCVE-2011-3490
Multiple stack-based buffer overflows in service.exe in Measuresoft ScadaPro 4.0.0 and earlier allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long command to port 11234, as demonstrated with the TF co... Read more
- Published: Sep. 16, 2011
- Modified: Apr. 11, 2025