Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 9.8

    CRITICAL
    CVE-2016-11074

    An issue was discovered in Mattermost Server before 3.0.0. A password-reset link could be reused.... Read more

    Affected Products : mattermost_server
    • EPSS Score: %0.41
    • Published: Jun. 19, 2020
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2016-11073

    An issue was discovered in Mattermost Server before 3.0.0. It allows XSS via a Legal or Support setting.... Read more

    Affected Products : mattermost_server
    • EPSS Score: %0.36
    • Published: Jun. 19, 2020
    • Modified: Nov. 21, 2024

  • 6.5

    MEDIUM
    CVE-2016-11072

    An issue was discovered in Mattermost Server before 3.0.2. The purposes of a session ID and a Session Token were mishandled.... Read more

    Affected Products : mattermost_server
    • EPSS Score: %0.19
    • Published: Jun. 19, 2020
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2016-11071

    An issue was discovered in Mattermost Server before 3.1.0. It allows XSS because the noreferrer and noopener protection mechanisms were not in place.... Read more

    Affected Products : mattermost_server
    • EPSS Score: %0.36
    • Published: Jun. 19, 2020
    • Modified: Nov. 21, 2024

  • 5.4

    MEDIUM
    CVE-2016-11070

    An issue was discovered in Mattermost Server before 3.1.0. It allows XSS via theme color-code values.... Read more

    Affected Products : mattermost_server
    • EPSS Score: %0.34
    • Published: Jun. 19, 2020
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2016-11069

    An issue was discovered in Mattermost Server before 3.2.0. It mishandles brute-force attempts at password change.... Read more

    Affected Products : mattermost_server
    • EPSS Score: %0.20
    • Published: Jun. 19, 2020
    • Modified: Nov. 21, 2024

  • 5.3

    MEDIUM
    CVE-2016-11068

    An issue was discovered in Mattermost Server before 3.2.0. Attackers could read LDAP fields via injection.... Read more

    Affected Products : mattermost_server
    • EPSS Score: %0.35
    • Published: Jun. 19, 2020
    • Modified: Nov. 21, 2024

  • 5.3

    MEDIUM
    CVE-2016-11067

    An issue was discovered in Mattermost Server before 3.2.0. It allowed crafted posts that could cause a web browser to hang.... Read more

    Affected Products : mattermost_server
    • EPSS Score: %0.38
    • Published: Jun. 19, 2020
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2016-11066

    An issue was discovered in Mattermost Server before 3.2.0. The initial_load API disclosed unnecessary personal information.... Read more

    Affected Products : mattermost_server
    • EPSS Score: %0.32
    • Published: Jun. 19, 2020
    • Modified: Nov. 21, 2024

  • 4.3

    MEDIUM
    CVE-2016-11065

    An issue was discovered in Mattermost Server before 3.3.0. An attacker could use the WebSocket feature to send pop-up messages to users or change a post's appearance.... Read more

    Affected Products : mattermost_server
    • EPSS Score: %0.15
    • Published: Jun. 19, 2020
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2016-11064

    An issue was discovered in Mattermost Desktop App before 3.4.0. Strings could be executed as code via injection.... Read more

    Affected Products : mattermost_desktop
    • EPSS Score: %0.65
    • Published: Jun. 19, 2020
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2016-11063

    An issue was discovered in Mattermost Server before 3.5.1. XSS can occur via file preview.... Read more

    Affected Products : mattermost_server
    • EPSS Score: %0.36
    • Published: Jun. 19, 2020
    • Modified: Nov. 21, 2024

  • 5.3

    MEDIUM
    CVE-2016-11062

    An issue was discovered in Mattermost Server before 3.5.1. E-mail address verification can be bypassed.... Read more

    Affected Products : mattermost_server
    • EPSS Score: %0.20
    • Published: Jun. 19, 2020
    • Modified: Nov. 21, 2024

  • 10.0

    HIGH
    CVE-2016-11061

    Xerox WorkCentre 3655, 3655i, 58XX, 58XXi, 59XX, 59XXi, 6655, 6655i, 72XX, 72XXi, 78XX, 78XXi, 7970, and 7970i devices before 073.xxx.086.15410 do not properly escape parameters in the support/remoteUI/configrui.php script, which can allow an unauthentica... Read more

    • EPSS Score: %3.01
    • Published: Apr. 29, 2020
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2016-11060

    Certain NETGEAR devices are affected by insecure renegotiation. This affects SRX5308 before 2017-02-10, FVS336Gv3 before 2017-02-10, FVS318N before 2017-02-10, and FVS318Gv2 before 2017-02-10.... Read more

    • EPSS Score: %0.39
    • Published: Apr. 28, 2020
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2016-11059

    Certain NETGEAR devices are affected by password exposure. This affects AC1450 before 2017-01-06, C6300 before 2017-01-06, D500 before 2017-01-06, D1500 before 2017-01-06, D3600 before 2017-01-06, D6000 before 2017-01-06, D6100 before 2017-01-06, D6200 be... Read more

    • EPSS Score: %0.32
    • Published: Apr. 28, 2020
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2016-11058

    The NETGEAR genie application before 2.4.34 for Android is affected by mishandling of hard-coded API keys and session IDs.... Read more

    Affected Products : genie
    • EPSS Score: %0.16
    • Published: Apr. 28, 2020
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2016-11057

    Certain NETGEAR devices are affected by mishandling of repeated URL calls. This affects JNR1010v2 before 2017-01-06, WNR614 before 2017-01-06, WNR618 before 2017-01-06, JWNR2000v5 before 2017-01-06, WNR2020 before 2017-01-06, JWNR2010v5 before 2017-01-06,... Read more

    • EPSS Score: %0.28
    • Published: Apr. 28, 2020
    • Modified: Nov. 21, 2024

  • 9.0

    HIGH
    CVE-2016-11056

    Certain NETGEAR devices are affected by anonymous root access. This affects ReadyNAS Surveillance 1.1.1-3-armel and earlier and ReadyNAS Surveillance 1.4.1-3-amd64 and earlier.... Read more

    Affected Products : readynas_surveillance
    • EPSS Score: %0.67
    • Published: Apr. 28, 2020
    • Modified: Nov. 21, 2024

  • 4.3

    MEDIUM
    CVE-2016-11055

    Certain NETGEAR devices are affected by CSRF. This affects CM400 before 2017-01-11, CM600 before 2017-01-11, D1500 before 2017-01-11, D500 before 2017-01-11, DST6501 before 2017-01-11, JNR1010v1 before 2017-01-11, JWNR2000Tv3 before 2017-01-11, JWNR2010v3... Read more

    • EPSS Score: %0.12
    • Published: Apr. 28, 2020
    • Modified: Nov. 21, 2024
Showing 20 of 291722 Results