Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 10.0

    HIGH
    CVE-1999-0208

    rpc.ypupdated (NIS) allows remote users to execute arbitrary commands.... Read more

    Affected Products : aix irix asl_ux_4800 ews-ux_v up-ux_v
    • EPSS Score: %60.19
    • Published: Dec. 12, 1995
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0203

    In Sendmail, attackers can gain root privileges via SMTP by specifying an improper "mail from" address and an invalid "rcpt to" address that would cause the mail to bounce to a program.... Read more

    Affected Products : sendmail
    • EPSS Score: %0.48
    • Published: Aug. 17, 1995
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0200

    Windows NT FTP server (WFTP) with the guest account enabled without a password allows an attacker to log into the FTP server using any username and password.... Read more

    Affected Products :
    • EPSS Score: %0.48
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0197

    finger 0@host on some systems may print information on some user accounts.... Read more

    Affected Products :
    • EPSS Score: %0.48
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0186

    In Solaris, an SNMP subagent has a default community string that allows remote attackers to execute arbitrary commands as root, or modify system parameters.... Read more

    Affected Products : solaris
    • EPSS Score: %3.78
    • Published: Oct. 01, 1998
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0098

    Buffer overflow in SMTP HELO command in Sendmail allows a remote attacker to hide activities.... Read more

    Affected Products : appleshare mercury_mail_server slmail
    • EPSS Score: %0.96
    • Published: Apr. 01, 1998
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0095

    The debug command in Sendmail is enabled, allowing attackers to execute commands as root.... Read more

    Affected Products : sendmail
    • EPSS Score: %10.64
    • Published: Oct. 01, 1988
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0082

    CWD ~root command in ftpd allows root access.... Read more

    Affected Products : ftp ftpcd
    • EPSS Score: %2.84
    • Published: Nov. 11, 1988
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0080

    Certain configurations of wu-ftp FTP server 2.4 use a _PATH_EXECPATH setting to a directory with dangerous commands, such as /bin, which allows remote authenticated users to gain root access via the "site exec" command.... Read more

    Affected Products : wu-ftpd
    • EPSS Score: %1.46
    • Published: Nov. 30, 1995
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0067

    phf CGI program allows remote command execution through shell metacharacters.... Read more

    Affected Products : http_server ncsa_httpd
    • EPSS Score: %91.79
    • Published: Mar. 20, 1996
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0047

    MIME conversion buffer overflow in sendmail versions 8.8.3 and 8.8.4.... Read more

    Affected Products : bsd_os openlinux sendmail
    • EPSS Score: %2.17
    • Published: Jan. 28, 1997
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0043

    Command execution via shell metachars in INN daemon (innd) 1.5 using "newgroup" and "rmgroup" control messages, and others.... Read more

    • EPSS Score: %1.59
    • Published: Dec. 04, 1996
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0008

    Buffer overflow in NIS+, in Sun's rpc.nisd program.... Read more

    Affected Products : solaris hp-ux sunos
    • EPSS Score: %3.95
    • Published: Jun. 08, 1998
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0006

    Buffer overflow in POP servers based on BSD/Qualcomm's qpopper allows remote attackers to gain root access using a long PASS command.... Read more

    Affected Products : qpopper
    • EPSS Score: %8.24
    • Published: Jul. 14, 1998
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0005

    Arbitrary command execution via IMAP buffer overflow in authenticate command.... Read more

    Affected Products : imap messaging_server
    • EPSS Score: %17.48
    • Published: Jul. 20, 1998
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0003

    Execute commands as root via buffer overflow in Tooltalk database server (rpc.ttdbserverd).... Read more

    Affected Products : aix solaris hp-ux sunos irix ted_cde
    • EPSS Score: %90.34
    • Published: Apr. 01, 1998
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0002

    Buffer overflow in NFS mountd gives root access to remote attackers, mostly in Linux systems.... Read more

    Affected Products : linux bsd_os openlinux
    • EPSS Score: %16.84
    • Published: Oct. 12, 1998
    • Modified: Apr. 03, 2025

  • 9.9

    CRITICAL
    CVE-2018-3877

    An exploitable buffer overflow vulnerability exists in the credentials handler of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250-Firmware version 0.20.17. The strncpy overflows the destination buffer, which has a size of 160 bytes. An att... Read more

    Affected Products : sth-eth-250_firmware sth-eth-250
    • EPSS Score: %0.39
    • Published: Sep. 21, 2018
    • Modified: Nov. 21, 2024

  • 9.9

    CRITICAL
    CVE-2024-29241

    Missing authorization vulnerability in System webapi component in Synology Surveillance Station before 9.2.0-9289 and 9.2.0-11289 allows remote authenticated users to obtain non-sensitive information, write sensitive configurations in DSM, and reboot or s... Read more

    • Published: Mar. 28, 2024
    • Modified: Aug. 12, 2025

  • 9.9

    CRITICAL
    CVE-2024-31390

    : Improper Control of Generation of Code ('Code Injection') vulnerability in Soflyy Breakdance allows : Code Injection.This issue affects Breakdance: from n/a through 1.7.2. ... Read more

    Affected Products : breakdance
    • Published: Apr. 03, 2024
    • Modified: Nov. 21, 2024
Showing 20 of 291400 Results