Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 6.1

    MEDIUM
    CVE-2005-10001

    A vulnerability was found in Netegrity SiteMinder up to 4.5.1 and classified as critical. Affected by this issue is the file /siteminderagent/pwcgi/smpwservicescgi.exe of the component Login. The manipulation of the argument target leads to an open redire... Read more

    Affected Products : symantec_siteminder
    • EPSS Score: %0.20
    • Published: Mar. 28, 2022
    • Modified: Nov. 20, 2024

  • 7.5

    HIGH
    CVE-2004-2779

    id3_utf16_deserialize() in utf16.c in libid3tag through 0.15.1b misparses ID3v2 tags encoded in UTF-16 with an odd number of bytes, triggering an endless loop allocating memory until an OOM condition is reached, leading to denial-of-service (DoS).... Read more

    Affected Products : libid3tag
    • EPSS Score: %0.44
    • Published: Feb. 20, 2018
    • Modified: Nov. 20, 2024

  • 9.8

    CRITICAL
    CVE-2004-2776

    go.cgi in GoScript 2.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) query string or (2) artarchive parameter.... Read more

    Affected Products : goscript
    • EPSS Score: %2.22
    • Published: Dec. 31, 2019
    • Modified: Nov. 20, 2024

  • 6.1

    MEDIUM
    CVE-2003-5003

    A vulnerability was found in ISS BlackICE PC Protection. It has been rated as problematic. Affected by this issue is the Update Handler. The manipulation with an unknown input leads to cross site scripting. The attack may be launched remotely. The exploit... Read more

    Affected Products : iss_blackice_pc_protection
    • EPSS Score: %0.28
    • Published: Mar. 28, 2022
    • Modified: Nov. 20, 2024

  • 5.3

    MEDIUM
    CVE-2003-5002

    A vulnerability was found in ISS BlackICE PC Protection. It has been declared as problematic. Affected by this vulnerability is the component Update Handler which allows cleartext transmission of data. NOTE: This vulnerability only affects products that a... Read more

    Affected Products : iss_blackice_pc_protection
    • EPSS Score: %0.14
    • Published: Mar. 28, 2022
    • Modified: Nov. 20, 2024

  • 9.8

    CRITICAL
    CVE-2003-5001

    A vulnerability was found in ISS BlackICE PC Protection and classified as critical. Affected by this issue is the component Cross Site Scripting Detection. The manipulation as part of POST/PUT/DELETE/OPTIONS Request leads to privilege escalation. The atta... Read more

    Affected Products : iss_blackice_pc_protection
    • EPSS Score: %0.32
    • Published: Mar. 28, 2022
    • Modified: Nov. 20, 2024

  • 7.5

    HIGH
    CVE-2003-1605

    curl 7.x before 7.10.7 sends CONNECT proxy credentials to the remote server.... Read more

    Affected Products : curl
    • EPSS Score: %0.40
    • Published: Aug. 23, 2018
    • Modified: Nov. 20, 2024

  • 9.8

    CRITICAL
    CVE-2002-2444

    Snoopy before 2.0.0 has a security hole in exec cURL... Read more

    Affected Products : snoopy
    • EPSS Score: %0.48
    • Published: Oct. 28, 2019
    • Modified: Nov. 20, 2024

  • 7.8

    HIGH
    CVE-2002-2439

    Integer overflow in the new[] operator in gcc before 4.8.0 allows attackers to have unspecified impacts.... Read more

    Affected Products : gcc
    • EPSS Score: %0.14
    • Published: Oct. 23, 2019
    • Modified: Nov. 20, 2024

  • 7.5

    HIGH
    CVE-2002-2438

    TCP firewalls could be circumvented by sending a SYN Packets with other flags (like e.g. RST flag) set, which was not correctly discarded by the Linux TCP stack after firewalling.... Read more

    Affected Products : linux_kernel
    • EPSS Score: %4.66
    • Published: May. 18, 2021
    • Modified: Nov. 20, 2024

  • 9.8

    CRITICAL
    CVE-1999-0199

    manual/search.texi in the GNU C Library (aka glibc) before 2.2 lacks a statement about the unspecified tdelete return value upon deletion of a tree's root, which might allow attackers to access a dangling pointer in an application whose developer was unaw... Read more

    Affected Products : glibc
    • EPSS Score: %0.68
    • Published: Oct. 06, 2020
    • Modified: Nov. 20, 2024

  • 3.3

    LOW
    CVE-2024-46794

    In the Linux kernel, the following vulnerability has been resolved: x86/tdx: Fix data leak in mmio_read() The mmio_read() function makes a TDVMCALL to retrieve MMIO data for an address from the VMM. Sean noticed that mmio_read() unintentionally exposes... Read more

    Affected Products : linux_kernel
    • Published: Sep. 18, 2024
    • Modified: Nov. 20, 2024

  • 5.5

    MEDIUM
    CVE-2024-46827

    In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: fix firmware crash due to invalid peer nss Currently, if the access point receives an association request containing an Extended HE Capabilities Information Element with a... Read more

    Affected Products : linux_kernel
    • Published: Sep. 27, 2024
    • Modified: Nov. 20, 2024

  • 7.5

    HIGH
    CVE-2024-33014

    Transient DOS while parsing ESP IE from beacon/probe response frame.... Read more

    • Published: Aug. 05, 2024
    • Modified: Nov. 20, 2024

  • 9.8

    CRITICAL
    CVE-2024-52714

    Tenda AC6 v2.0 v15.03.06.50 was discovered to contain a buffer overflow in the function 'fromSetSysTime.... Read more

    Affected Products : ac6_firmware ac6
    • Published: Nov. 19, 2024
    • Modified: Nov. 20, 2024

  • 5.5

    MEDIUM
    CVE-2024-50060

    In the Linux kernel, the following vulnerability has been resolved: io_uring: check if we need to reschedule during overflow flush In terms of normal application usage, this list will always be empty. And if an application does overflow a bit, it'll hav... Read more

    Affected Products : linux_kernel
    • Published: Oct. 21, 2024
    • Modified: Nov. 20, 2024

  • 5.5

    MEDIUM
    CVE-2024-50065

    In the Linux kernel, the following vulnerability has been resolved: ntfs3: Change to non-blocking allocation in ntfs_d_hash d_hash is done while under "rcu-walk" and should not sleep. __get_name() allocates using GFP_KERNEL, having the possibility to sl... Read more

    Affected Products : linux_kernel
    • Published: Oct. 21, 2024
    • Modified: Nov. 20, 2024

  • 7.5

    HIGH
    CVE-2024-33015

    Transient DOS while parsing SCAN RNR IE when bytes received from AP is such that the size of the last param of IE is less than neighbor report.... Read more

    • Published: Aug. 05, 2024
    • Modified: Nov. 20, 2024

  • 7.5

    HIGH
    CVE-2024-33025

    Transient DOS while parsing the BSS parameter change count or MLD capabilities fields of the ML IE.... Read more

    • Published: Aug. 05, 2024
    • Modified: Nov. 20, 2024

  • 7.5

    HIGH
    CVE-2024-33024

    Transient DOS while parsing the ML IE when a beacon with length field inside the common info of ML IE greater than the ML IE length.... Read more

    • Published: Aug. 05, 2024
    • Modified: Nov. 20, 2024
Showing 20 of 291526 Results