Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.

Latest Critical Actively Exploited Remotely Exploitable

2.5

LOW

CVE-2024-21002

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JavaFX). Supported versions that are affected are Oracle Java SE: 8u401; Oracle GraalVM Enterprise Edition: 20.3.13 and 21.3.9. Difficult to exp...

Affected Products : active_iq_unified_manager oncommand_insight oncommand_workflow_automation jdk jre graalvm java_se data_infrastructure_insights_acquisition_unit data_infrastructure_insights_storage_workload_security_agent
Published: Apr. 16, 2024

Modified: May. 29, 2025
9.8

CRITICAL

CVE-2022-41238

A missing permission check in Jenkins DotCi Plugin 2.40.00 and earlier allows unauthenticated attackers to trigger builds of jobs corresponding to the attacker-specified repository for attacker-specified commits....

Affected Products : dotci
EPSS Score: %0.82

Published: Sep. 21, 2022

Modified: May. 29, 2025
5.5

MEDIUM

CVE-2022-37347

Trend Micro Security 2021 and 2022 (Consumer) is vulnerable to an Out-Of-Bounds Read Information Disclosure Vulnerability that could allow an attacker to read sensitive information from other memory locations and cause a crash on an affected machine. This...

Affected Products : security windows
EPSS Score: %0.08

Published: Sep. 19, 2022

Modified: May. 29, 2025
6.5

MEDIUM

CVE-2022-35782

Azure Site Recovery Elevation of Privilege Vulnerability...

Affected Products : azure_site_recovery azure_site_recovery_vmware_to_azure
EPSS Score: %1.94

Published: Aug. 09, 2022

Modified: May. 29, 2025
6.5

MEDIUM

CVE-2022-35781

Azure Site Recovery Elevation of Privilege Vulnerability...

Affected Products : azure_site_recovery azure_site_recovery_vmware_to_azure
EPSS Score: %1.94

Published: Aug. 09, 2022

Modified: May. 29, 2025
6.5

MEDIUM

CVE-2022-35780

Azure Site Recovery Elevation of Privilege Vulnerability...

Affected Products : azure_site_recovery azure_site_recovery_vmware_to_azure
EPSS Score: %1.94

Published: Aug. 09, 2022

Modified: May. 29, 2025
7.8

HIGH

CVE-2022-35779

Azure RTOS GUIX Studio Remote Code Execution Vulnerability...

Affected Products : azure_real_time_operating_system_guix_studio azure_rtos_guix_studio
EPSS Score: %1.12

Published: Aug. 09, 2022

Modified: May. 29, 2025
8.8

HIGH

CVE-2022-35777

Visual Studio Remote Code Execution Vulnerability...

Affected Products : visual_studio_2017 visual_studio_2019 visual_studio visual_studio_2022
EPSS Score: %0.22

Published: Aug. 09, 2022

Modified: May. 29, 2025
6.2

MEDIUM

CVE-2022-35776

Azure Site Recovery Denial of Service Vulnerability...

Affected Products : azure_site_recovery azure_site_recovery_vmware_to_azure
EPSS Score: %0.67

Published: Aug. 09, 2022

Modified: May. 29, 2025
6.5

MEDIUM

CVE-2022-35775

Azure Site Recovery Elevation of Privilege Vulnerability...

Affected Products : azure_site_recovery azure_site_recovery_vmware_to_azure
EPSS Score: %1.94

Published: Aug. 09, 2022

Modified: May. 29, 2025
4.9

MEDIUM

CVE-2022-35774

Azure Site Recovery Elevation of Privilege Vulnerability...

Affected Products : azure_site_recovery azure_site_recovery_vmware_to_azure
EPSS Score: %2.38

Published: Aug. 09, 2022

Modified: May. 29, 2025
7.8

HIGH

CVE-2022-35773

Azure RTOS GUIX Studio Remote Code Execution Vulnerability...

Affected Products : azure_real_time_operating_system_guix_studio azure_rtos_guix_studio
EPSS Score: %2.72

Published: Aug. 09, 2022

Modified: May. 29, 2025
9.8

CRITICAL

CVE-2022-32839

The issue was addressed with improved bounds checks. This issue is fixed in macOS Monterey 12.5, macOS Big Sur 11.6.8, Security Update 2022-005 Catalina, iOS 15.6 and iPadOS 15.6, tvOS 15.6, watchOS 8.7. A remote user may cause an unexpected app terminati...

Affected Products : macos mac_os_x iphone_os tvos watchos ipados
EPSS Score: %1.26

Published: Aug. 24, 2022

Modified: May. 29, 2025
7.8

HIGH

CVE-2022-32812

The issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.5, macOS Big Sur 11.6.8, Security Update 2022-005 Catalina. An app may be able to execute arbitrary code with kernel privileges....

Affected Products : macos mac_os_x
EPSS Score: %0.10

Published: Aug. 24, 2022

Modified: May. 29, 2025
7.8

HIGH

CVE-2022-32811

A memory corruption vulnerability was addressed with improved locking. This issue is fixed in macOS Monterey 12.5, macOS Big Sur 11.6.8, Security Update 2022-005 Catalina. An app may be able to execute arbitrary code with kernel privileges....

Affected Products : macos mac_os_x
EPSS Score: %0.08

Published: Aug. 24, 2022

Modified: May. 29, 2025
7.5

HIGH

CVE-2022-23948

A flaw was found in Keylime before 6.3.0. The logic in the Keylime agent for checking for a secure mount can be fooled by previously created unprivileged mounts allowing secrets to be leaked to other processes on the host....

Affected Products : keylime
EPSS Score: %0.12

Published: Sep. 21, 2022

Modified: May. 29, 2025
2.5

LOW

CVE-2024-21004

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JavaFX). Supported versions that are affected are Oracle Java SE: 8u401; Oracle GraalVM Enterprise Edition: 20.3.13 and 21.3.9. Difficult to exp...

Affected Products : active_iq_unified_manager oncommand_insight oncommand_workflow_automation jdk jre graalvm java_se data_infrastructure_insights_acquisition_unit data_infrastructure_insights_storage_workload_security_agent
Published: Apr. 16, 2024

Modified: May. 29, 2025
4.4

MEDIUM

CVE-2025-5278

A flaw was found in GNU Coreutils. The sort utility's begfield() function is vulnerable to a heap buffer under-read. The program may access memory outside the allocated buffer if a user runs a crafted command using the traditional key format. A malicious ...

Affected Products :
Published: May. 27, 2025

Modified: May. 29, 2025

Vuln Type: Memory Corruption
7.1

HIGH

CVE-2025-39407

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Caseproof, LLC Memberpress allows Reflected XSS.This issue affects Memberpress: from n/a before 1.12.0....

Affected Products : memberpress
Published: May. 19, 2025

Modified: May. 29, 2025

Vuln Type: Cross-Site Scripting
6.2

MEDIUM

CVE-2024-2905

A security vulnerability has been discovered within rpm-ostree, pertaining to the /etc/shadow file in default builds having the world-readable bit enabled. This issue arises from the default permissions being set at a higher level than recommended, potent...

Affected Products : enterprise_linux grub2 libssh international_components_for_unicode
Published: Apr. 25, 2024

Modified: May. 29, 2025

Showing 20 of 291779 Results

1
...
1007
1008
1009
1010
1011
1012
1013
...
14589

Latest CVE Feed

2.5

9.8

5.5

6.5

6.5

6.5

7.8

8.8

6.2

6.5

4.9

7.8

9.8

7.8

7.8

7.5

2.5

4.4

7.1

6.2

Theme Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable