Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 9.8

    CRITICAL
    CVE-2021-43217

    Windows Encrypting File System (EFS) Remote Code Execution Vulnerability... Read more

    • Published: Dec. 15, 2021
    • Modified: Nov. 21, 2024

  • 6.8

    MEDIUM
    CVE-2021-43216

    Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability... Read more

    • Published: Dec. 15, 2021
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2021-43215

    iSNS Server Memory Corruption Vulnerability Can Lead to Remote Code Execution... Read more

    • Published: Dec. 15, 2021
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2021-43214

    Web Media Extensions Remote Code Execution Vulnerability... Read more

    Affected Products : raw_image_extension
    • Published: Dec. 15, 2021
    • Modified: Nov. 21, 2024

  • 7.1

    HIGH
    CVE-2021-43211

    Windows 10 Update Assistant Elevation of Privilege Vulnerability... Read more

    Affected Products : windows_10_update_assistant
    • Published: Nov. 24, 2021
    • Modified: Nov. 21, 2024

  • 7.8

    HIGH
    CVE-2021-43209

    3D Viewer Remote Code Execution Vulnerability... Read more

    Affected Products : 3d_viewer
    • Published: Nov. 10, 2021
    • Modified: Nov. 21, 2024

  • 7.8

    HIGH
    CVE-2021-43208

    3D Viewer Remote Code Execution Vulnerability... Read more

    Affected Products : 3d_viewer
    • Published: Nov. 10, 2021
    • Modified: Nov. 21, 2024

  • 7.8

    HIGH
    CVE-2021-43207

    Windows Common Log File System Driver Elevation of Privilege Vulnerability... Read more

    • Published: Dec. 15, 2021
    • Modified: Nov. 21, 2024

  • 4.3

    MEDIUM
    CVE-2021-43206

    A server-generated error message containing sensitive information in Fortinet FortiOS 7.0.0 through 7.0.3, 6.4.0 through 6.4.8, 6.2.x, 6.0.x and FortiProxy 7.0.0 through 7.0.1, 2.0.x allows malicious webservers to retrieve a web proxy's client username an... Read more

    Affected Products : fortios fortiproxy
    • Published: May. 04, 2022
    • Modified: Nov. 21, 2024

  • 5.3

    MEDIUM
    CVE-2021-43205

    An exposure of sensitive information to an unauthorized actor vulnerability [CWE-200] in FortiClient for Linux version 7.0.2 and below, 6.4.7 and below and 6.2.9 and below may allow an unauthenticated attacker to access the confighandler webserver via ext... Read more

    Affected Products : forticlient
    • Published: Apr. 06, 2022
    • Modified: Nov. 21, 2024

  • 4.9

    MEDIUM
    CVE-2021-43204

    A improper control of a resource through its lifetime in Fortinet FortiClientWindows version 6.4.1 and 6.4.0, version 6.2.9 and below, version 6.0.10 and below allows attacker to cause a complete denial of service of its components via changes of director... Read more

    Affected Products : forticlient
    • Published: Dec. 09, 2021
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2021-43203

    In JetBrains Ktor before 1.6.4, nonce verification during the OAuth2 authentication process is implemented improperly.... Read more

    Affected Products : ktor
    • Published: Nov. 09, 2021
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2021-43202

    In JetBrains TeamCity before 2021.1.3, the X-Frame-Options header is missing in some cases.... Read more

    Affected Products : teamcity
    • Published: Nov. 30, 2021
    • Modified: Nov. 21, 2024

  • 5.3

    MEDIUM
    CVE-2021-43201

    In JetBrains TeamCity before 2021.1.3, a newly created project could take settings from an already deleted project.... Read more

    Affected Products : teamcity
    • Published: Nov. 09, 2021
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2021-43200

    In JetBrains TeamCity before 2021.1.2, permission checks in the Agent Push functionality were insufficient.... Read more

    Affected Products : teamcity
    • Published: Nov. 09, 2021
    • Modified: Nov. 21, 2024

  • 5.3

    MEDIUM
    CVE-2021-43199

    In JetBrains TeamCity before 2021.1.2, permission checks in the Create Patch functionality are insufficient.... Read more

    Affected Products : teamcity
    • Published: Nov. 09, 2021
    • Modified: Nov. 21, 2024

  • 5.4

    MEDIUM
    CVE-2021-43198

    In JetBrains TeamCity before 2021.1.2, stored XSS is possible.... Read more

    Affected Products : teamcity
    • Published: Nov. 09, 2021
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2021-43197

    In JetBrains TeamCity before 2021.1.2, email notifications could include unescaped HTML for XSS.... Read more

    Affected Products : teamcity
    • Published: Nov. 09, 2021
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2021-43196

    In JetBrains TeamCity before 2021.1, information disclosure via the Docker Registry connection dialog is possible.... Read more

    Affected Products : teamcity
    • Published: Nov. 09, 2021
    • Modified: Nov. 21, 2024

  • 5.3

    MEDIUM
    CVE-2021-43195

    In JetBrains TeamCity before 2021.1.2, some HTTP security headers were missing.... Read more

    Affected Products : teamcity
    • Published: Nov. 09, 2021
    • Modified: Nov. 21, 2024
Showing 20 of 293554 Results