Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 7.8

    HIGH
    CVE-2013-5582

    Ammyy Admin 3.2 and earlier stores the client ID at a fixed memory location, which might make it easier for user-assisted remote attackers to bypass authentication by running a local program that extracts a field from the AA_v3.2.exe file.... Read more

    Affected Products : ammyy_admin
    • EPSS Score: %3.84
    • Published: Feb. 11, 2020
    • Modified: Nov. 21, 2024

  • 5.9

    MEDIUM
    CVE-2013-5571

    HMailServer 5.3.x and prior: Memory Corruption which could cause DOS... Read more

    Affected Products : hmailserver
    • EPSS Score: %0.33
    • Published: Jan. 07, 2020
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2013-5461

    IBM Endpoint Manager for Remote Control 9.0.0 and 9.0.1 and Tivoli Remote Control 5.1.2 store multiple hashes of partial passwords, which makes it easier for remote attackers to decrypt passwords by leveraging access to the hashes. IBM X-Force ID: 88309.... Read more

    • EPSS Score: %0.34
    • Published: Apr. 27, 2018
    • Modified: Nov. 21, 2024

  • 5.3

    MEDIUM
    CVE-2013-5391

    IBM Worklight Consumer and Enterprise Editions 5.0.x before 5.0.6 Fix Pack 2 and 6.0.x before 6.0.0 Fix Pack 2, and Mobile Foundation Consumer and Enterprise Editions 5.0.x before 5.0.6 Fix Pack 2 and 6.0.0 Fix Pack 2 make it easier for attackers to defea... Read more

    Affected Products : mobile_foundation worklight
    • EPSS Score: %0.21
    • Published: Apr. 27, 2018
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2013-5212

    Cross-site Scripting (XSS) in EasyXDM before 2.4.18 allows remote attackers to inject arbitrary web script or html via the easyxdm.swf file.... Read more

    Affected Products : easyxdm
    • EPSS Score: %0.30
    • Published: Feb. 14, 2020
    • Modified: Nov. 21, 2024

  • 5.9

    MEDIUM
    CVE-2013-5123

    The mirroring support (-M, --use-mirrors) in Python Pip before 1.5 uses insecure DNS querying and authenticity checks which allows attackers to perform man-in-the-middle attacks.... Read more

    • EPSS Score: %12.86
    • Published: Nov. 05, 2019
    • Modified: Nov. 21, 2024

  • 10.0

    HIGH
    CVE-2013-5122

    Cisco Linksys Routers EA2700, EA3500, E4200, EA4500: A bug can cause an unsafe TCP port to open which leads to unauthenticated access... Read more

    • EPSS Score: %4.10
    • Published: Jan. 07, 2020
    • Modified: Nov. 21, 2024

  • 7.1

    HIGH
    CVE-2013-5116

    Evernote prior to 5.5.1 has insecure password change... Read more

    Affected Products : evernote
    • EPSS Score: %0.09
    • Published: Jan. 31, 2020
    • Modified: Nov. 21, 2024

  • 6.6

    MEDIUM
    CVE-2013-5114

    LastPass prior to 2.5.1 allows secure wipe bypass.... Read more

    Affected Products : lastpass
    • EPSS Score: %0.11
    • Published: Jan. 31, 2020
    • Modified: Nov. 21, 2024

  • 6.8

    MEDIUM
    CVE-2013-5113

    LastPass prior to 2.5.1 has an insecure PIN implementation.... Read more

    Affected Products : lastpass
    • EPSS Score: %0.12
    • Published: Jan. 31, 2020
    • Modified: Nov. 21, 2024

  • 4.6

    MEDIUM
    CVE-2013-5112

    Evernote before 5.5.1 has insecure PIN storage... Read more

    Affected Products : evernote
    • EPSS Score: %0.10
    • Published: Jan. 31, 2020
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2013-5106

    A Code Execution vulnerability exists in select.py when using python-mode 2012-12-19.... Read more

    Affected Products : python-mode
    • EPSS Score: %0.59
    • Published: Feb. 12, 2020
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2013-5027

    Collabtive 1.0 has incorrect access control... Read more

    Affected Products : collabtive
    • EPSS Score: %0.36
    • Published: Dec. 27, 2019
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2013-4985

    Multiple Vivotek IP Cameras remote authentication bypass that could allow access to the video stream... Read more

    • EPSS Score: %25.16
    • Published: Dec. 27, 2019
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2013-4982

    AVTECH AVN801 DVR has a security bypass via the administration login captcha... Read more

    Affected Products : avn801_dvr_firmware avn801_dvr
    • EPSS Score: %4.00
    • Published: Dec. 27, 2019
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2013-4976

    Hikvision DS-2CD7153-E IP Camera has security bypass via hardcoded credentials... Read more

    Affected Products : ds-2cd7153-e_firmware ds-2cd7153-e
    • EPSS Score: %9.35
    • Published: Dec. 27, 2019
    • Modified: Nov. 21, 2024

  • 9.0

    HIGH
    CVE-2013-4975

    Hikvision DS-2CD7153-E IP Camera has Privilege Escalation... Read more

    Affected Products : ds-2cd7153-e_firmware ds-2cd7153-e
    • EPSS Score: %14.07
    • Published: Dec. 27, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2013-4968

    Puppet Enterprise before 3.0.1 allows remote attackers to (1) conduct clickjacking attacks via unspecified vectors related to the console, and (2) conduct cross-site scripting (XSS) attacks via unspecified vectors related to "live management."... Read more

    Affected Products : puppet_enterprise
    • EPSS Score: %0.33
    • Published: Dec. 11, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2013-4891

    The xss_clean function in CodeIgniter before 2.1.4 might allow remote attackers to bypass an intended protection mechanism and conduct cross-site scripting (XSS) attacks via an unclosed HTML tag.... Read more

    Affected Products : codeigniter
    • EPSS Score: %0.27
    • Published: Feb. 21, 2018
    • Modified: Nov. 21, 2024

  • 5.3

    MEDIUM
    CVE-2013-4868

    Karotz API 12.07.19.00: Session Token Information Disclosure... Read more

    Affected Products : api
    • EPSS Score: %22.15
    • Published: Dec. 27, 2019
    • Modified: Nov. 21, 2024
Showing 20 of 291741 Results