Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 10.0

    HIGH
    CVE-2009-4873

    Stack-based buffer overflow in the HTTP server in Rhino Software Serv-U Web Client 9.0.0.5 allows remote attackers to cause a denial of service (server crash) or execute arbitrary code via a long Session cookie.... Read more

    Affected Products : serv-u
    • EPSS Score: %60.24
    • Published: May. 26, 2010
    • Modified: Apr. 11, 2025

  • 10.0

    HIGH
    CVE-2009-4741

    Unspecified vulnerability in the Extras Manager before 2.0.0.67 in Skype before 4.1.0.179 on Windows has unknown impact and attack vectors.... Read more

    Affected Products : windows skype
    • EPSS Score: %0.41
    • Published: Mar. 26, 2010
    • Modified: Apr. 11, 2025

  • 10.0

    HIGH
    CVE-2018-11138

    The '/common/download_agent_installer.php' script in the Quest KACE System Management Appliance 8.0.318 is accessible by anonymous users and can be abused to execute arbitrary commands on the system.... Read more

    • Actively Exploited
    • EPSS Score: %86.83
    • Published: May. 31, 2018
    • Modified: Mar. 14, 2025

  • 10.0

    HIGH
    CVE-2009-4335

    Multiple unspecified vulnerabilities in bundled stored procedures in the Spatial Extender component in IBM DB2 9.5 before FP5 have unknown impact and remote attack vectors, related to "remote exploits."... Read more

    Affected Products : db2
    • EPSS Score: %1.73
    • Published: Dec. 16, 2009
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2009-4179

    Stack-based buffer overflow in ovalarm.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via a long HTTP Accept-Language header in an OVABverbose action.... Read more

    Affected Products : openview_network_node_manager
    • EPSS Score: %77.53
    • Published: Dec. 10, 2009
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2009-4006

    Stack-based buffer overflow in the TEA decoding algorithm in RhinoSoft Serv-U FTP server 7.0.0.1, 9.0.0.5, and other versions before 9.1.0.0 allows remote attackers to execute arbitrary code via a long hexadecimal string.... Read more

    Affected Products : serv-u_file_server serv-u
    • EPSS Score: %77.87
    • Published: Nov. 20, 2009
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2009-3792

    Directory traversal vulnerability in Adobe Flash Media Server (FMS) before 3.5.3 allows attackers to load arbitrary DLL files via unspecified vectors.... Read more

    Affected Products : flash_media_server
    • EPSS Score: %0.40
    • Published: Dec. 21, 2009
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2009-3102

    The doHotCopy subroutine in socket-server.pl in Zmanda Recovery Manager (ZRM) for MySQL 2.x before 2.1.1 allows remote attackers to execute arbitrary commands via vectors involving a crafted $MYSQL_BINPATH variable.... Read more

    Affected Products : zrm_for_my_sql
    • EPSS Score: %6.45
    • Published: Sep. 08, 2009
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2009-3032

    Integer overflow in kvolefio.dll 8.5.0.8339 and 10.5.0.0 in the Autonomy KeyView Filter SDK, as used in IBM Lotus Notes 8.5, Symantec Mail Security for Microsoft Exchange 5.0.10 through 5.0.13, and other products, allows context-dependent attackers to exe... Read more

    • EPSS Score: %1.90
    • Published: Mar. 05, 2010
    • Modified: Apr. 11, 2025

  • 10.0

    HIGH
    CVE-2009-2935

    Google V8, as used in Google Chrome before 2.0.172.43, allows remote attackers to bypass intended restrictions on reading memory, and possibly obtain sensitive information or execute arbitrary code in the Chrome sandbox, via crafted JavaScript.... Read more

    Affected Products : chrome
    • EPSS Score: %2.04
    • Published: Aug. 27, 2009
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2009-2685

    Stack-based buffer overflow in the login form in the management web server in HP Power Manager allows remote attackers to execute arbitrary code via the Login variable.... Read more

    Affected Products : power_manager
    • EPSS Score: %76.74
    • Published: Nov. 06, 2009
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2009-2452

    Multiple unspecified vulnerabilities in Citrix Licensing 11.5 have unknown impact and attack vectors, related to "underlying components of the License Management Console."... Read more

    Affected Products : licensing
    • EPSS Score: %0.60
    • Published: Jul. 14, 2009
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2009-2296

    The NFSv4 server kernel module in Sun Solaris 10, and OpenSolaris before snv_119, does not properly implement the nfs_portmon setting, which allows remote attackers to access shares, and read, create, and modify arbitrary files, via unspecified vectors.... Read more

    Affected Products : solaris opensolaris
    • EPSS Score: %4.56
    • Published: Jul. 02, 2009
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2009-2193

    Buffer overflow in the kernel in Apple Mac OS X 10.5 before 10.5.8 allows remote attackers to execute arbitrary code or cause a denial of service (system crash) via a crafted AppleTalk response packet.... Read more

    Affected Products : mac_os_x mac_os_x_server
    • EPSS Score: %24.77
    • Published: Aug. 06, 2009
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2009-1985

    Unspecified vulnerability in the Network Authentication component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.4 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.... Read more

    Affected Products : database_server
    • EPSS Score: %3.20
    • Published: Oct. 22, 2009
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2009-1943

    Stack-based buffer overflow in the IKE service (ireIke.exe) in SafeNet SoftRemote before 10.8.6 allows remote attackers to execute arbitrary code via a long request to UDP port 62514.... Read more

    Affected Products : softremote softremote1.4
    • EPSS Score: %64.25
    • Published: Jun. 05, 2009
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2009-1918

    Microsoft Internet Explorer 5.01 SP4 and 6 SP1; Internet Explorer 6 for Windows XP SP2 and SP3 and Server 2003 SP2; and Internet Explorer 7 and 8 for Windows XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2 do not pr... Read more

    • EPSS Score: %62.48
    • Published: Jul. 29, 2009
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2009-1628

    Stack-based buffer overflow in mnet.exe in Unisys Business Information Server (BIS) 10 and 10.1 on Windows allows remote attackers to execute arbitrary code via a crafted TCP packet.... Read more

    Affected Products : windows business_information_server
    • EPSS Score: %3.91
    • Published: Jun. 26, 2009
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2009-1429

    The Intel LANDesk Common Base Agent (CBA) in Symantec Alert Management System 2 (AMS2), as used in Symantec System Center (SSS); Symantec AntiVirus Server; Symantec AntiVirus Central Quarantine Server; Symantec AntiVirus (SAV) Corporate Edition 9 before 9... Read more

    • EPSS Score: %91.10
    • Published: Apr. 29, 2009
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2009-1350

    Unspecified vulnerability in xtagent.exe in Novell NetIdentity Client before 1.2.4 allows remote attackers to execute arbitrary code by establishing an IPC$ connection to the XTIERRPCPIPE named pipe, and sending RPC messages that trigger a dereference of ... Read more

    Affected Products : netidentity_client1.2.3
    • EPSS Score: %75.46
    • Published: Apr. 21, 2009
    • Modified: Apr. 09, 2025
Showing 20 of 291400 Results