Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 5.3

    MEDIUM
    CVE-2013-3018

    The AXIS webapp in deploy-tomcat/axis in IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.1.2 and 7.2.0 through 7.2.1.4 allows remote attackers to obtain sensitive configuration information via a direct request, as demonstrated by happyaxis.j... Read more

    • EPSS Score: %0.14
    • Published: May. 24, 2018
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2013-3017

    IBM Tivoli Application Dependency Discovery Manager (TADDM) before 7.2.1.5 and 7.2.x before 7.2.2 make it easier for remote attackers to defeat cryptographic protection mechanisms by leveraging support for weak SSL ciphers. IBM X-Force ID: 84353.... Read more

    • EPSS Score: %0.25
    • Published: Jul. 09, 2018
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2013-3001

    Directory traversal vulnerability in IBM InfoSphere Data Replication Dashboard 9.7 and 10.1 allows remote attackers to read arbitrary files via unspecified vectors. IBM X-Force ID: 84127.... Read more

    • EPSS Score: %0.16
    • Published: Jul. 09, 2018
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2013-3000

    SQL injection vulnerability in IBM InfoSphere Data Replication Dashboard 9.7 and 10.1 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. IBM X-Force ID: 84116.... Read more

    • EPSS Score: %0.58
    • Published: Jul. 09, 2018
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2013-2999

    Cross-site scripting (XSS) vulnerability in IBM InfoSphere Data Replication Dashboard 9.7 and 10.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. IBM X-Force ID: 84115.... Read more

    • EPSS Score: %0.21
    • Published: Jul. 09, 2018
    • Modified: Nov. 21, 2024

  • 7.8

    HIGH
    CVE-2013-2972

    IBM WebSphere Cast Iron 6.3 allows remote attackers to bypass intended access restrictions via unspecified vectors. IBM X-Force ID: 83868.... Read more

    • EPSS Score: %0.43
    • Published: Jul. 11, 2018
    • Modified: Nov. 21, 2024

  • 7.8

    HIGH
    CVE-2013-2951

    IBM WebSphere Portal 7.0.0.x and 8.0.0.x write passwords to a trace file when tracing is enabled for the Selfcare Portlet (Profile Management), which allows local users to obtain sensitive information by reading the file. IBM X-Force ID: 83621.... Read more

    Affected Products : websphere_portal
    • EPSS Score: %0.05
    • Published: Jul. 11, 2018
    • Modified: Nov. 21, 2024

  • 9.3

    HIGH
    CVE-2013-2830

    Use-after-free vulnerability in SumatraPDF Reader 2.x before 2.2.1 allows remote attackers to execute arbitrary code via a crafted PDF file.... Read more

    Affected Products : sumatrapdf
    • EPSS Score: %1.00
    • Published: Feb. 08, 2018
    • Modified: Nov. 21, 2024

  • 7.8

    HIGH
    CVE-2013-2807

    Rockwell Automation RSLinx Enterprise Software (LogReceiver.exe) CPR9, CPR9-SR1, CPR9-SR2, CPR9-SR3, CPR9-SR4, CPR9-SR5, CPR9-SR5.1, and CPR9-SR6 does not handle input correctly and results in a logic error if it calculates an incorrect value for the “Tot... Read more

    Affected Products : rslinx_enterprise
    • EPSS Score: %0.03
    • Published: Mar. 26, 2019
    • Modified: Nov. 21, 2024

  • 7.8

    HIGH
    CVE-2013-2806

    Rockwell Automation RSLinx Enterprise Software (LogReceiver.exe) CPR9, CPR9-SR1, CPR9-SR2, CPR9-SR3, CPR9-SR4, CPR9-SR5, CPR9-SR5.1, and CPR9-SR6 does not handle input correctly and results in a logic error if it calculates an incorrect value for the “End... Read more

    Affected Products : rslinx_enterprise
    • EPSS Score: %0.05
    • Published: Mar. 26, 2019
    • Modified: Nov. 21, 2024

  • 7.8

    HIGH
    CVE-2013-2805

    Rockwell Automation RSLinx Enterprise Software (LogReceiver.exe) CPR9, CPR9-SR1, CPR9-SR2, CPR9-SR3, CPR9-SR4, CPR9-SR5, CPR9-SR5.1, and CPR9-SR6 does not handle input correctly and results in a logic error if it receives a datagram with an incorrect valu... Read more

    Affected Products : rslinx_enterprise
    • EPSS Score: %0.03
    • Published: Mar. 26, 2019
    • Modified: Nov. 21, 2024

  • 7.8

    HIGH
    CVE-2013-2773

    Nitro PDF 8.5.0.26: A specially crafted DLL file can facilitate Arbitrary Code Execution... Read more

    Affected Products : nitropdf
    • EPSS Score: %0.03
    • Published: Jan. 14, 2020
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2013-2764

    Secure Entry Server before 4.7.0 contains a URI Redirection vulnerability which could allow remote attackers to conduct phishing attacks due to HSP_AbsoluteRedirects being disabled by default.... Read more

    Affected Products : secure_entry_server
    • EPSS Score: %0.30
    • Published: Jan. 28, 2020
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2013-2748

    Belkin Wemo Switch before WeMo_US_2.00.2176.PVT could allow remote attackers to upload arbitrary files onto the system.... Read more

    Affected Products : wemo_switch_firmware wemo_switch
    • EPSS Score: %43.78
    • Published: Jan. 28, 2020
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2013-2745

    An SQL Injection vulnerability exists in MiniDLNA prior to 1.1.0... Read more

    Affected Products : debian_linux minidlna
    • EPSS Score: %0.39
    • Published: Dec. 04, 2019
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2013-2739

    MiniDLNA has heap-based buffer overflow... Read more

    Affected Products : debian_linux readymedia
    • EPSS Score: %9.46
    • Published: Nov. 01, 2019
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2013-2738

    minidlna has SQL Injection that may allow retrieval of arbitrary files... Read more

    Affected Products : readymedia
    • EPSS Score: %0.38
    • Published: Nov. 01, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2013-2714

    Cross-site Scripting (XSS) in WordPress podPress Plugin 8.8.10.13 could allow remote attackers to inject arbitrary web script or html via the 'playerID' parameter.... Read more

    Affected Products : podpress
    • EPSS Score: %0.22
    • Published: Jan. 28, 2020
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2013-2684

    Cross-site Scripting (XSS) in Cisco Linksys E4200 1.0.05 Build 7 devices allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.... Read more

    • EPSS Score: %4.45
    • Published: Feb. 06, 2020
    • Modified: Nov. 21, 2024

  • 5.3

    MEDIUM
    CVE-2013-2683

    Cisco Linksys E4200 1.0.05 Build 7 devices contain an Information Disclosure Vulnerability which allows remote attackers to obtain private IP addresses and other sensitive information.... Read more

    • EPSS Score: %12.51
    • Published: Feb. 06, 2020
    • Modified: Nov. 21, 2024
Showing 20 of 291736 Results