Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 9.8

    CRITICAL
    CVE-2023-34417

    Memory safety bugs present in Firefox 113. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 114.... Read more

    Affected Products : firefox
    • EPSS Score: %0.28
    • Published: Jun. 19, 2023
    • Modified: May. 05, 2025

  • 6.4

    MEDIUM
    CVE-2023-33203

    The Linux kernel before 6.2.9 has a race condition and resultant use-after-free in drivers/net/ethernet/qualcomm/emac/emac.c if a physically proximate attacker unplugs an emac based device.... Read more

    Affected Products : linux_kernel enterprise_linux
    • EPSS Score: %0.02
    • Published: May. 18, 2023
    • Modified: May. 05, 2025

  • 7.8

    HIGH
    CVE-2023-32396

    This issue was addressed with improved checks. This issue is fixed in Xcode 15, tvOS 17, watchOS 10, iOS 17 and iPadOS 17, macOS Sonoma 14. An app may be able to gain elevated privileges.... Read more

    Affected Products : macos iphone_os tvos watchos xcode ipados
    • EPSS Score: %0.02
    • Published: Sep. 27, 2023
    • Modified: May. 05, 2025

  • 6.7

    MEDIUM
    CVE-2023-32269

    An issue was discovered in the Linux kernel before 6.1.11. In net/netrom/af_netrom.c, there is a use-after-free because accept is also allowed for a successfully connected AF_NETROM socket. However, in order for an attacker to exploit this, the system mus... Read more

    Affected Products : linux_kernel
    • EPSS Score: %0.01
    • Published: May. 05, 2023
    • Modified: May. 05, 2025

  • 7.8

    HIGH
    CVE-2023-32233

    In the Linux kernel through 6.3.1, a use-after-free in Netfilter nf_tables when processing batch requests can be abused to perform arbitrary read and write operations on kernel memory. Unprivileged local users can obtain root privileges. This occurs becau... Read more

    • EPSS Score: %0.46
    • Published: May. 08, 2023
    • Modified: May. 05, 2025

  • 6.4

    MEDIUM
    CVE-2023-30772

    The Linux kernel before 6.2.9 has a race condition and resultant use-after-free in drivers/power/supply/da9150-charger.c if a physically proximate attacker unplugs a device.... Read more

    Affected Products : linux_kernel
    • EPSS Score: %0.06
    • Published: Apr. 16, 2023
    • Modified: May. 05, 2025

  • 4.8

    MEDIUM
    CVE-2023-2967

    The TinyMCE Custom Styles WordPress plugin before 1.1.4 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disa... Read more

    Affected Products : tinymce_custom_styles
    • EPSS Score: %0.10
    • Published: Jul. 10, 2023
    • Modified: May. 05, 2025

  • 7.8

    HIGH
    CVE-2023-2939

    Insufficient data validation in Installer in Google Chrome on Windows prior to 114.0.5735.90 allowed a local attacker to perform privilege escalation via crafted symbolic link. (Chromium security severity: Medium)... Read more

    Affected Products : chrome windows edge_chromium
    • EPSS Score: %0.02
    • Published: May. 30, 2023
    • Modified: May. 05, 2025

  • 8.8

    HIGH
    CVE-2023-2936

    Type Confusion in V8 in Google Chrome prior to 114.0.5735.90 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)... Read more

    Affected Products : chrome edge_chromium
    • EPSS Score: %7.63
    • Published: May. 30, 2023
    • Modified: May. 05, 2025

  • 8.8

    HIGH
    CVE-2023-2935

    Type Confusion in V8 in Google Chrome prior to 114.0.5735.90 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)... Read more

    Affected Products : chrome edge_chromium
    • EPSS Score: %7.63
    • Published: May. 30, 2023
    • Modified: May. 05, 2025

  • 8.8

    HIGH
    CVE-2023-2934

    Out of bounds memory access in Mojo in Google Chrome prior to 114.0.5735.90 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)... Read more

    Affected Products : chrome edge_chromium
    • EPSS Score: %0.72
    • Published: May. 30, 2023
    • Modified: May. 05, 2025

  • 8.8

    HIGH
    CVE-2023-2933

    Use after free in PDF in Google Chrome prior to 114.0.5735.90 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: High)... Read more

    Affected Products : chrome edge_chromium
    • EPSS Score: %0.39
    • Published: May. 30, 2023
    • Modified: May. 05, 2025

  • 8.8

    HIGH
    CVE-2023-2932

    Use after free in PDF in Google Chrome prior to 114.0.5735.90 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: High)... Read more

    Affected Products : chrome edge_chromium
    • EPSS Score: %0.39
    • Published: May. 30, 2023
    • Modified: May. 05, 2025

  • 8.8

    HIGH
    CVE-2023-2931

    Use after free in PDF in Google Chrome prior to 114.0.5735.90 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: High)... Read more

    Affected Products : chrome edge_chromium
    • EPSS Score: %0.39
    • Published: May. 30, 2023
    • Modified: May. 05, 2025

  • 8.8

    HIGH
    CVE-2023-2930

    Use after free in Extensions in Google Chrome prior to 114.0.5735.90 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)... Read more

    Affected Products : chrome edge_chromium
    • EPSS Score: %0.13
    • Published: May. 30, 2023
    • Modified: May. 05, 2025

  • 8.8

    HIGH
    CVE-2023-2929

    Out of bounds write in Swiftshader in Google Chrome prior to 114.0.5735.90 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)... Read more

    Affected Products : chrome edge_chromium
    • EPSS Score: %0.54
    • Published: May. 30, 2023
    • Modified: May. 05, 2025

  • 6.1

    MEDIUM
    CVE-2023-2743

    The ERP WordPress plugin before 1.12.4 does not sanitise and escape the employee_name parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin.... Read more

    Affected Products : wp_erp
    • EPSS Score: %0.11
    • Published: Jun. 27, 2023
    • Modified: May. 05, 2025

  • 8.8

    HIGH
    CVE-2023-2726

    Inappropriate implementation in WebApp Installs in Google Chrome prior to 113.0.5672.126 allowed an attacker who convinced a user to install a malicious web app to bypass install dialog via a crafted HTML page. (Chromium security severity: Medium)... Read more

    Affected Products : fedora debian_linux chrome edge_chromium
    • EPSS Score: %0.02
    • Published: May. 16, 2023
    • Modified: May. 05, 2025

  • 8.8

    HIGH
    CVE-2023-2725

    Use after free in Guest View in Google Chrome prior to 113.0.5672.126 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)... Read more

    Affected Products : fedora debian_linux chrome edge_chromium
    • EPSS Score: %7.73
    • Published: May. 16, 2023
    • Modified: May. 05, 2025

  • 8.8

    HIGH
    CVE-2023-2724

    Type confusion in V8 in Google Chrome prior to 113.0.5672.126 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)... Read more

    Affected Products : fedora debian_linux chrome edge_chromium
    • EPSS Score: %10.33
    • Published: May. 16, 2023
    • Modified: May. 05, 2025
Showing 20 of 291221 Results