Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 6.1

    MEDIUM
    CVE-2024-41381

    microweber 2.0.16 was discovered to contain a Cross Site Scripting (XSS) vulnerability via userfiles\modules\settings\admin.php.... Read more

    Affected Products : microweber cockpit
    • Published: Aug. 05, 2024
    • Modified: Jul. 10, 2025

  • 6.5

    MEDIUM
    CVE-2025-27738

    Improper access control in Windows Resilient File System (ReFS) allows an authorized attacker to disclose information over a network.... Read more

    • Published: Apr. 08, 2025
    • Modified: Jul. 10, 2025
    • Vuln Type: Information Disclosure

  • 9.1

    CRITICAL
    CVE-2024-3279

    An improper access control vulnerability exists in the mintplex-labs/anything-llm application, specifically within the import endpoint. This vulnerability allows an anonymous attacker, without an account in the application, to import their own database fi... Read more

    Affected Products : anythingllm
    • Published: Aug. 12, 2024
    • Modified: Jul. 10, 2025

  • 8.6

    HIGH
    CVE-2025-27737

    Improper input validation in Windows Security Zone Mapping allows an unauthorized attacker to bypass a security feature locally.... Read more

    • Published: Apr. 08, 2025
    • Modified: Jul. 10, 2025
    • Vuln Type: Misconfiguration

  • 6.5

    MEDIUM
    CVE-2018-16548

    An issue was discovered in ZZIPlib through 0.13.69. There is a memory leak triggered in the function __zzip_parse_root_directory in zip.c, which will lead to a denial of service attack.... Read more

    Affected Products : zziplib zziplib
    • EPSS Score: %0.50
    • Published: Sep. 05, 2018
    • Modified: Jul. 10, 2025

  • 6.5

    MEDIUM
    CVE-2018-6540

    In ZZIPlib 0.13.67, there is a bus error caused by loading of a misaligned address in the zzip_disk_findfirst function of zzip/mmapped.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted zip file.... Read more

    Affected Products : ubuntu_linux zziplib zziplib
    • EPSS Score: %0.42
    • Published: Feb. 02, 2018
    • Modified: Jul. 10, 2025

  • 5.5

    MEDIUM
    CVE-2017-5979

    The prescan_entry function in fseeko.c in zziplib 0.13.62 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted ZIP file.... Read more

    Affected Products : zziplib zziplib
    • EPSS Score: %0.43
    • Published: Mar. 01, 2017
    • Modified: Jul. 10, 2025

  • 6.5

    MEDIUM
    CVE-2018-6381

    In ZZIPlib 0.13.67, 0.13.66, 0.13.65, 0.13.64, 0.13.63, 0.13.62, 0.13.61, 0.13.60, 0.13.59, 0.13.58, 0.13.57 and 0.13.56 there is a segmentation fault caused by invalid memory access in the zzip_disk_fread function (zzip/mmapped.c) because the size variab... Read more

    Affected Products : ubuntu_linux zziplib zziplib
    • EPSS Score: %0.32
    • Published: Jan. 29, 2018
    • Modified: Jul. 10, 2025

  • 5.8

    MEDIUM
    CVE-2018-17828

    Directory traversal vulnerability in ZZIPlib 0.13.69 allows attackers to overwrite arbitrary files via a .. (dot dot) in a zip file, because of the function unzzip_cat in the bins/unzzipcat-mem.c file.... Read more

    Affected Products : zziplib zziplib
    • EPSS Score: %0.59
    • Published: Oct. 01, 2018
    • Modified: Jul. 10, 2025

  • 6.5

    MEDIUM
    CVE-2018-6484

    In ZZIPlib 0.13.67, there is a memory alignment error and bus error in the __zzip_fetch_disk_trailer function of zzip/zip.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted zip file.... Read more

    Affected Products : ubuntu_linux zziplib zziplib
    • EPSS Score: %0.42
    • Published: Feb. 01, 2018
    • Modified: Jul. 10, 2025

  • 6.5

    MEDIUM
    CVE-2018-6869

    In ZZIPlib 0.13.68, there is an uncontrolled memory allocation and a crash in the __zzip_parse_root_directory function of zzip/zip.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted zip file.... Read more

    • EPSS Score: %1.07
    • Published: Feb. 09, 2018
    • Modified: Jul. 10, 2025

  • 6.5

    MEDIUM
    CVE-2018-7726

    An issue was discovered in ZZIPlib 0.13.68. There is a bus error caused by the __zzip_parse_root_directory function of zip.c. Attackers could leverage this vulnerability to cause a denial of service via a crafted zip file.... Read more

    • EPSS Score: %0.35
    • Published: Mar. 06, 2018
    • Modified: Jul. 10, 2025

  • 5.5

    MEDIUM
    CVE-2017-5980

    The zzip_mem_entry_new function in memdisk.c in zziplib 0.13.62 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted ZIP file.... Read more

    Affected Products : zziplib zziplib
    • EPSS Score: %0.22
    • Published: Mar. 01, 2017
    • Modified: Jul. 10, 2025

  • 5.5

    MEDIUM
    CVE-2017-5974

    Heap-based buffer overflow in the __zzip_get32 function in fetch.c in zziplib 0.13.62, 0.13.61, 0.13.60, 0.13.59, 0.13.58, 0.13.57, 0.13.56 allows remote attackers to cause a denial of service (crash) via a crafted ZIP file.... Read more

    Affected Products : debian_linux zziplib zziplib
    • EPSS Score: %0.60
    • Published: Mar. 01, 2017
    • Modified: Jul. 10, 2025

  • 5.5

    MEDIUM
    CVE-2017-5977

    The zzip_mem_entry_extra_block function in memdisk.c in zziplib 0.13.62 allows remote attackers to cause a denial of service (invalid memory read and crash) via a crafted ZIP file.... Read more

    Affected Products : zziplib zziplib
    • EPSS Score: %0.46
    • Published: Mar. 01, 2017
    • Modified: Jul. 10, 2025

  • 3.3

    LOW
    CVE-2020-18442

    Infinite Loop in zziplib v0.13.69 allows remote attackers to cause a denial of service via the return value "zzip_file_read" in the function "unzzip_cat_file".... Read more

    Affected Products : fedora debian_linux zziplib zziplib
    • EPSS Score: %0.06
    • Published: Jun. 18, 2021
    • Modified: Jul. 10, 2025

  • 5.5

    MEDIUM
    CVE-2017-5975

    Heap-based buffer overflow in the __zzip_get64 function in fetch.c in zziplib 0.13.62, 0.13.61, 0.13.60, 0.13.59, 0.13.58, 0.13.57, 0.13.56 allows remote attackers to cause a denial of service (crash) via a crafted ZIP file.... Read more

    Affected Products : debian_linux zziplib zziplib
    • EPSS Score: %0.63
    • Published: Mar. 01, 2017
    • Modified: Jul. 10, 2025

  • 5.5

    MEDIUM
    CVE-2020-18770

    An issue was discovered in function zzip_disk_entry_to_file_header in mmapped.c in zziplib 0.13.69, which will lead to a denial-of-service.... Read more

    Affected Products : zziplib zziplib
    • EPSS Score: %0.02
    • Published: Aug. 22, 2023
    • Modified: Jul. 10, 2025

  • 5.5

    MEDIUM
    CVE-2017-5981

    seeko.c in zziplib 0.13.62 allows remote attackers to cause a denial of service (assertion failure and crash) via a crafted ZIP file.... Read more

    Affected Products : zziplib zziplib
    • EPSS Score: %0.43
    • Published: Mar. 01, 2017
    • Modified: Jul. 10, 2025

  • 5.5

    MEDIUM
    CVE-2017-5978

    The zzip_mem_entry_new function in memdisk.c in zziplib 0.13.62 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted ZIP file.... Read more

    Affected Products : zziplib zziplib
    • EPSS Score: %0.43
    • Published: Mar. 01, 2017
    • Modified: Jul. 10, 2025
Showing 20 of 291741 Results