Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 8.0

    HIGH
    CVE-2024-21821

    Multiple TP-LINK products allow a network-adjacent authenticated attacker with access to the product from the LAN port or Wi-Fi to execute arbitrary OS commands.... Read more

    • Published: Jan. 11, 2024
    • Modified: Jun. 17, 2025

  • 6.8

    MEDIUM
    CVE-2023-5879

    Users’ product account authentication data was stored in clear text in The Genie Company Aladdin Connect Mobile Application Version 5.65 Build 2075 (and below) on Android Devices. This allows the attacker, with access to the android device, to potentially... Read more

    Affected Products : aladdin_connect
    • Published: Jan. 03, 2024
    • Modified: Jun. 17, 2025

  • 7.5

    HIGH
    CVE-2023-51890

    An infinite loop issue discovered in Mathtex 1.05 and before allows a remote attackers to consume CPU resources via crafted string in the application URL.... Read more

    Affected Products : mathtex
    • Published: Jan. 24, 2024
    • Modified: Jun. 17, 2025

  • 8.8

    HIGH
    CVE-2023-50349

    Sametime is impacted by a Cross Site Request Forgery (CSRF) vulnerability. Some REST APIs in the Sametime Proxy application can allow an attacker to perform malicious actions on the application. ... Read more

    Affected Products : sametime
    • Published: Feb. 09, 2024
    • Modified: Jun. 17, 2025

  • 6.5

    MEDIUM
    CVE-2023-47459

    An issue in Knovos Discovery v.22.67.0 allows a remote attacker to obtain sensitive information via the /DiscoveryReview/Service/CaseManagement.svc/GetProductSiteName component.... Read more

    Affected Products : discovery
    • Published: Jan. 16, 2024
    • Modified: Jun. 17, 2025

  • 5.5

    MEDIUM
    CVE-2022-48577

    An access issue was addressed with improved access restrictions. This issue is fixed in macOS Ventura 13. An app may be able to access user-sensitive data.... Read more

    Affected Products : macos
    • Published: Jan. 10, 2024
    • Modified: Jun. 17, 2025

  • 7.2

    HIGH
    CVE-2022-37780

    Phicomm FIR151B A2, FIR302E A2, FIR300B A2, FIR303B A2 routers V3.0.1.17 were discovered to contain a remote command execution (RCE) vulnerability via the pingAddr parameter of the tracert function.... Read more

    • Published: Sep. 07, 2022
    • Modified: Jun. 17, 2025

  • 6.5

    MEDIUM
    CVE-2022-36661

    xhyve commit dfbe09b was discovered to contain a NULL pointer dereference via the component vi_pci_read(). This vulnerability allows attackers to cause a Denial of Service via unspecified vectors.... Read more

    Affected Products : xhyve
    • Published: Sep. 07, 2022
    • Modified: Jun. 17, 2025

  • 9.8

    CRITICAL
    CVE-2022-36660

    xhyve commit dfbe09b was discovered to contain a stack buffer overflow via the component pci_vtrnd_notify().... Read more

    Affected Products : xhyve
    • Published: Sep. 07, 2022
    • Modified: Jun. 17, 2025

  • 6.5

    MEDIUM
    CVE-2022-36659

    xhyve commit dfbe09b was discovered to contain a NULL pointer dereference via the component vi_pci_write(). This vulnerability allows attackers to cause a Denial of Service via unspecified vectors.... Read more

    Affected Products : xhyve
    • Published: Sep. 07, 2022
    • Modified: Jun. 17, 2025

  • 9.8

    CRITICAL
    CVE-2022-36587

    In Tenda G3 US_G3V3.0br_V15.11.0.6(7663)_EN_TDE, there is a buffer overflow vulnerability caused by sprintf in function in the httpd binary.... Read more

    Affected Products : g3_firmware g3
    • Published: Sep. 07, 2022
    • Modified: Jun. 17, 2025

  • 9.8

    CRITICAL
    CVE-2022-36513

    H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function edditactionlist.... Read more

    Affected Products : gr-1200w_firmware gr-1200w
    • Published: Aug. 25, 2022
    • Modified: Jun. 17, 2025

  • 9.8

    CRITICAL
    CVE-2022-36511

    H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function EditApAdvanceInfo.... Read more

    Affected Products : gr-1200w_firmware gr-1200w
    • Published: Aug. 25, 2022
    • Modified: Jun. 17, 2025

  • 7.8

    HIGH
    CVE-2022-36510

    H3C GR2200 MiniGR1A0V100R014 was discovered to contain a command injection vulnerability via the param parameter at DelL2tpLNSList.... Read more

    Affected Products : gr2200_firmware gr2200
    • Published: Aug. 25, 2022
    • Modified: Jun. 17, 2025

  • 7.8

    HIGH
    CVE-2022-36509

    H3C GR3200 MiniGR1B0V100R014 was discovered to contain a command injection vulnerability via the param parameter at DelL2tpLNSList.... Read more

    Affected Products : gr3200_firmware gr3200
    • Published: Aug. 25, 2022
    • Modified: Jun. 17, 2025

  • 7.8

    HIGH
    CVE-2022-36508

    H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function SetAPInfoById.... Read more

    • Published: Aug. 25, 2022
    • Modified: Jun. 17, 2025

  • 7.8

    HIGH
    CVE-2022-36504

    H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function Edit_BasicSSID.... Read more

    • Published: Aug. 25, 2022
    • Modified: Jun. 17, 2025

  • 7.5

    HIGH
    CVE-2022-32264

    sys/netinet/tcp_timer.h in FreeBSD before 7.0 contains a denial-of-service (DoS) vulnerability due to improper handling of TSopt on TCP connections. NOTE: This vulnerability only affects products that are no longer supported by the maintainer... Read more

    Affected Products : freebsd
    • Published: Sep. 06, 2022
    • Modified: Jun. 17, 2025

  • 7.5

    HIGH
    CVE-2022-31414

    D-Link DIR-1960 firmware DIR-1960_A1_1.11 was discovered to contain a buffer overflow via srtcat in prog.cgi. This vulnerability allowed attackers to cause a Denial of Service (DoS) via a crafted HTTP request.... Read more

    Affected Products : dir-1960_firmware dir-1960
    • Published: Sep. 07, 2022
    • Modified: Jun. 17, 2025

  • 6.5

    MEDIUM
    CVE-2022-30312

    The Trend Controls IC protocol through 2022-05-06 allows Cleartext Transmission of Sensitive Information. According to FSCT-2022-0050, there is a Trend Controls Inter-Controller (IC) protocol cleartext transmission of credentials issue. The affected compo... Read more

    • Published: Sep. 07, 2022
    • Modified: Jun. 17, 2025
Showing 20 of 293517 Results