Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 6.6

    MEDIUM
    CVE-2022-42766

    In wlan driver, there is a possible missing permission check, This could lead to local information disclosure.... Read more

    Affected Products : android sc7731e sc9832e sc9863a t310 t606 t610 t612 t616 t618 +4 more products
    • Published: Dec. 06, 2022
    • Modified: Apr. 23, 2025

  • 6.6

    MEDIUM
    CVE-2022-42765

    In wlan driver, there is a possible missing bounds check, This could lead to local denial of service in wlan services.... Read more

    Affected Products : android s8000 sc7731e sc9832e sc9863a t310 t606 t610 t612 t616 +5 more products
    • Published: Dec. 06, 2022
    • Modified: Apr. 23, 2025

  • 7.7

    HIGH
    CVE-2022-42756

    In sensor driver, there is a possible buffer overflow due to a missing bounds check. This could lead to local denial of service in kernel.... Read more

    Affected Products : android s8000 sc7731e sc9832e sc9863a t310 t606 t610 t612 t616 +4 more products
    • Published: Dec. 06, 2022
    • Modified: Apr. 23, 2025

  • 5.5

    MEDIUM
    CVE-2022-42754

    In npu driver, there is a memory corruption due to a use after free. This could lead to local denial of service in kernel.... Read more

    Affected Products : android s8000 sc7731e sc9832e sc9863a t310 t606 t610 t612 t616 +4 more products
    • Published: Dec. 06, 2022
    • Modified: Apr. 23, 2025

  • 7.8

    HIGH
    CVE-2022-41325

    An integer overflow in the VNC module in VideoLAN VLC Media Player through 3.0.17.4 allows attackers, by tricking a user into opening a crafted playlist or connecting to a rogue VNC server, to crash VLC or execute code under some conditions.... Read more

    Affected Products : debian_linux vlc_media_player
    • Published: Dec. 06, 2022
    • Modified: Apr. 23, 2025

  • 5.0

    MEDIUM
    CVE-2022-20521

    In sdpu_find_most_specific_service_uuid of sdp_utils.cc, there is a possible way to crash Bluetooth due to a missing null check. This could lead to local denial of service with no additional execution privileges needed. User interaction is needed for expl... Read more

    Affected Products : android
    • Published: Dec. 16, 2022
    • Modified: Apr. 23, 2025

  • 7.2

    HIGH
    CVE-2021-42386

    A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the nvalloc function... Read more

    Affected Products : fedora busybox
    • Published: Nov. 15, 2021
    • Modified: Apr. 23, 2025

  • 7.2

    HIGH
    CVE-2021-42385

    A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the evaluate function... Read more

    Affected Products : fedora busybox
    • Published: Nov. 15, 2021
    • Modified: Apr. 23, 2025

  • 7.2

    HIGH
    CVE-2021-42384

    A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the handle_special function... Read more

    Affected Products : fedora busybox
    • Published: Nov. 15, 2021
    • Modified: Apr. 23, 2025

  • 7.2

    HIGH
    CVE-2021-42383

    A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the evaluate function... Read more

    Affected Products : fedora busybox
    • Published: Nov. 15, 2021
    • Modified: Apr. 23, 2025

  • 7.2

    HIGH
    CVE-2021-42382

    A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the getvar_s function... Read more

    Affected Products : fedora busybox
    • Published: Nov. 15, 2021
    • Modified: Apr. 23, 2025

  • 7.2

    HIGH
    CVE-2021-42381

    A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the hash_init function... Read more

    Affected Products : fedora busybox
    • Published: Nov. 15, 2021
    • Modified: Apr. 23, 2025

  • 7.2

    HIGH
    CVE-2021-42380

    A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the clrvar function... Read more

    Affected Products : fedora busybox
    • Published: Nov. 15, 2021
    • Modified: Apr. 23, 2025

  • 7.2

    HIGH
    CVE-2021-42379

    A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the next_input_file function... Read more

    Affected Products : fedora busybox
    • Published: Nov. 15, 2021
    • Modified: Apr. 23, 2025

  • 7.2

    HIGH
    CVE-2021-42378

    A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the getvar_i function... Read more

    Affected Products : fedora busybox
    • Published: Nov. 15, 2021
    • Modified: Apr. 23, 2025

  • 5.5

    MEDIUM
    CVE-2021-42375

    An incorrect handling of a special element in Busybox's ash applet leads to denial of service when processing a crafted shell command, due to the shell mistaking specific characters for reserved characters. This may be used for DoS under rare conditions o... Read more

    • Published: Nov. 15, 2021
    • Modified: Apr. 23, 2025

  • 9.8

    CRITICAL
    CVE-2021-41616

    Apache DB DdlUtils 1.0 included a BinaryObjectsHelper that was intended for use when migrating database data with a SQL data type of BINARY, VARBINARY, LONGVARBINARY, or BLOB between databases using the ddlutils features. The BinaryObjectsHelper class was... Read more

    Affected Products : ddlutils
    • Published: Sep. 30, 2021
    • Modified: Apr. 23, 2025

  • 4.3

    MEDIUM
    CVE-2021-37193

    A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.0 SP2). An unauthenticated attacker in the same network of the affected system could manipulate certain parameters and set a valid user of the affected software as inva... Read more

    Affected Products : sinema_remote_connect_server
    • Published: Sep. 14, 2021
    • Modified: Apr. 23, 2025

  • 4.3

    MEDIUM
    CVE-2021-37192

    A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.0 SP2). The affected software has an information disclosure vulnerability that could allow an attacker to retrieve a list of network devices a known user can manage.... Read more

    Affected Products : sinema_remote_connect_server
    • Published: Sep. 14, 2021
    • Modified: Apr. 23, 2025

  • 4.3

    MEDIUM
    CVE-2021-37191

    A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.0 SP2). An unauthenticated attacker in the same network of the affected system could brute force the usernames from the affected software.... Read more

    Affected Products : sinema_remote_connect_server
    • Published: Sep. 14, 2021
    • Modified: Apr. 23, 2025
Showing 20 of 293592 Results