Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 7.8

    HIGH
    CVE-2022-41325

    An integer overflow in the VNC module in VideoLAN VLC Media Player through 3.0.17.4 allows attackers, by tricking a user into opening a crafted playlist or connecting to a rogue VNC server, to crash VLC or execute code under some conditions.... Read more

    Affected Products : debian_linux vlc_media_player
    • Published: Dec. 06, 2022
    • Modified: Apr. 23, 2025

  • 5.0

    MEDIUM
    CVE-2022-20521

    In sdpu_find_most_specific_service_uuid of sdp_utils.cc, there is a possible way to crash Bluetooth due to a missing null check. This could lead to local denial of service with no additional execution privileges needed. User interaction is needed for expl... Read more

    Affected Products : android
    • Published: Dec. 16, 2022
    • Modified: Apr. 23, 2025

  • 7.2

    HIGH
    CVE-2021-42386

    A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the nvalloc function... Read more

    Affected Products : fedora busybox
    • Published: Nov. 15, 2021
    • Modified: Apr. 23, 2025

  • 7.2

    HIGH
    CVE-2021-42385

    A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the evaluate function... Read more

    Affected Products : fedora busybox
    • Published: Nov. 15, 2021
    • Modified: Apr. 23, 2025

  • 7.2

    HIGH
    CVE-2021-42384

    A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the handle_special function... Read more

    Affected Products : fedora busybox
    • Published: Nov. 15, 2021
    • Modified: Apr. 23, 2025

  • 7.2

    HIGH
    CVE-2021-42383

    A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the evaluate function... Read more

    Affected Products : fedora busybox
    • Published: Nov. 15, 2021
    • Modified: Apr. 23, 2025

  • 7.2

    HIGH
    CVE-2021-42382

    A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the getvar_s function... Read more

    Affected Products : fedora busybox
    • Published: Nov. 15, 2021
    • Modified: Apr. 23, 2025

  • 7.2

    HIGH
    CVE-2021-42381

    A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the hash_init function... Read more

    Affected Products : fedora busybox
    • Published: Nov. 15, 2021
    • Modified: Apr. 23, 2025

  • 7.2

    HIGH
    CVE-2021-42380

    A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the clrvar function... Read more

    Affected Products : fedora busybox
    • Published: Nov. 15, 2021
    • Modified: Apr. 23, 2025

  • 7.2

    HIGH
    CVE-2021-42379

    A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the next_input_file function... Read more

    Affected Products : fedora busybox
    • Published: Nov. 15, 2021
    • Modified: Apr. 23, 2025

  • 7.2

    HIGH
    CVE-2021-42378

    A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the getvar_i function... Read more

    Affected Products : fedora busybox
    • Published: Nov. 15, 2021
    • Modified: Apr. 23, 2025

  • 5.5

    MEDIUM
    CVE-2021-42375

    An incorrect handling of a special element in Busybox's ash applet leads to denial of service when processing a crafted shell command, due to the shell mistaking specific characters for reserved characters. This may be used for DoS under rare conditions o... Read more

    • Published: Nov. 15, 2021
    • Modified: Apr. 23, 2025

  • 9.8

    CRITICAL
    CVE-2021-41616

    Apache DB DdlUtils 1.0 included a BinaryObjectsHelper that was intended for use when migrating database data with a SQL data type of BINARY, VARBINARY, LONGVARBINARY, or BLOB between databases using the ddlutils features. The BinaryObjectsHelper class was... Read more

    Affected Products : ddlutils
    • Published: Sep. 30, 2021
    • Modified: Apr. 23, 2025

  • 4.3

    MEDIUM
    CVE-2021-37193

    A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.0 SP2). An unauthenticated attacker in the same network of the affected system could manipulate certain parameters and set a valid user of the affected software as inva... Read more

    Affected Products : sinema_remote_connect_server
    • Published: Sep. 14, 2021
    • Modified: Apr. 23, 2025

  • 4.3

    MEDIUM
    CVE-2021-37192

    A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.0 SP2). The affected software has an information disclosure vulnerability that could allow an attacker to retrieve a list of network devices a known user can manage.... Read more

    Affected Products : sinema_remote_connect_server
    • Published: Sep. 14, 2021
    • Modified: Apr. 23, 2025

  • 4.3

    MEDIUM
    CVE-2021-37191

    A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.0 SP2). An unauthenticated attacker in the same network of the affected system could brute force the usernames from the affected software.... Read more

    Affected Products : sinema_remote_connect_server
    • Published: Sep. 14, 2021
    • Modified: Apr. 23, 2025

  • 4.3

    MEDIUM
    CVE-2021-37190

    A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.0 SP2). The affected software has an information disclosure vulnerability that could allow an attacker to retrieve VPN connection for a known user.... Read more

    Affected Products : sinema_remote_connect_server
    • Published: Sep. 14, 2021
    • Modified: Apr. 23, 2025

  • 6.5

    MEDIUM
    CVE-2021-37183

    A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.0 SP2). The affected software allows sending send-to-sleep notifications to the managed devices. An unauthenticated attacker in the same network of the affected system ... Read more

    Affected Products : sinema_remote_connect_server
    • Published: Sep. 14, 2021
    • Modified: Apr. 23, 2025

  • 6.5

    MEDIUM
    CVE-2021-37177

    A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.0 SP2). The status provided by the syslog clients managed by the affected software can be manipulated by an unauthenticated attacker in the same network of the affected... Read more

    Affected Products : sinema_remote_connect_server
    • Published: Sep. 14, 2021
    • Modified: Apr. 23, 2025

  • 10.0

    HIGH
    CVE-2021-27391

    A vulnerability has been identified in APOGEE MBC (PPC) (P2 Ethernet) (All versions >= V2.6.3), APOGEE MEC (PPC) (P2 Ethernet) (All versions >= V2.6.3), APOGEE PXC Compact (BACnet) (All versions < V3.5.3), APOGEE PXC Compact (P2 Ethernet) (All versions >=... Read more

    • Published: Sep. 14, 2021
    • Modified: Apr. 23, 2025
Showing 20 of 293643 Results