Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 9.8

    CRITICAL
    CVE-2022-36587

    In Tenda G3 US_G3V3.0br_V15.11.0.6(7663)_EN_TDE, there is a buffer overflow vulnerability caused by sprintf in function in the httpd binary.... Read more

    Affected Products : g3_firmware g3
    • Published: Sep. 07, 2022
    • Modified: Jun. 17, 2025

  • 9.8

    CRITICAL
    CVE-2022-36513

    H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function edditactionlist.... Read more

    Affected Products : gr-1200w_firmware gr-1200w
    • Published: Aug. 25, 2022
    • Modified: Jun. 17, 2025

  • 9.8

    CRITICAL
    CVE-2022-36511

    H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function EditApAdvanceInfo.... Read more

    Affected Products : gr-1200w_firmware gr-1200w
    • Published: Aug. 25, 2022
    • Modified: Jun. 17, 2025

  • 7.8

    HIGH
    CVE-2022-36510

    H3C GR2200 MiniGR1A0V100R014 was discovered to contain a command injection vulnerability via the param parameter at DelL2tpLNSList.... Read more

    Affected Products : gr2200_firmware gr2200
    • Published: Aug. 25, 2022
    • Modified: Jun. 17, 2025

  • 7.8

    HIGH
    CVE-2022-36509

    H3C GR3200 MiniGR1B0V100R014 was discovered to contain a command injection vulnerability via the param parameter at DelL2tpLNSList.... Read more

    Affected Products : gr3200_firmware gr3200
    • Published: Aug. 25, 2022
    • Modified: Jun. 17, 2025

  • 7.8

    HIGH
    CVE-2022-36508

    H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function SetAPInfoById.... Read more

    • Published: Aug. 25, 2022
    • Modified: Jun. 17, 2025

  • 7.8

    HIGH
    CVE-2022-36504

    H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function Edit_BasicSSID.... Read more

    • Published: Aug. 25, 2022
    • Modified: Jun. 17, 2025

  • 7.5

    HIGH
    CVE-2022-32264

    sys/netinet/tcp_timer.h in FreeBSD before 7.0 contains a denial-of-service (DoS) vulnerability due to improper handling of TSopt on TCP connections. NOTE: This vulnerability only affects products that are no longer supported by the maintainer... Read more

    Affected Products : freebsd
    • Published: Sep. 06, 2022
    • Modified: Jun. 17, 2025

  • 7.5

    HIGH
    CVE-2022-31414

    D-Link DIR-1960 firmware DIR-1960_A1_1.11 was discovered to contain a buffer overflow via srtcat in prog.cgi. This vulnerability allowed attackers to cause a Denial of Service (DoS) via a crafted HTTP request.... Read more

    Affected Products : dir-1960_firmware dir-1960
    • Published: Sep. 07, 2022
    • Modified: Jun. 17, 2025

  • 6.5

    MEDIUM
    CVE-2022-30312

    The Trend Controls IC protocol through 2022-05-06 allows Cleartext Transmission of Sensitive Information. According to FSCT-2022-0050, there is a Trend Controls Inter-Controller (IC) protocol cleartext transmission of credentials issue. The affected compo... Read more

    • Published: Sep. 07, 2022
    • Modified: Jun. 17, 2025

  • 4.3

    MEDIUM
    CVE-2022-23689

    Multiple vulnerabilities exist in the processing of packet data by the LLDP service of AOS-CX. Successful exploitation of these vulnerabilities may allow an attacker to impact the availability of the AOS-CX LLDP service and/or the management plane of the ... Read more

    Affected Products : aos-cx cx_6200f cx_6300 cx_6400 cx_8320 cx_8325 cx_8400 cx_8360 cx_10000 cx_9300 +3 more products
    • Published: Sep. 06, 2022
    • Modified: Jun. 17, 2025

  • 7.2

    HIGH
    CVE-2022-1807

    Multiple SQLi vulnerabilities in Webadmin allow for privilege escalation from admin to super-admin in Sophos Firewall older than version 18.5 MR4 and version 19.0 MR1.... Read more

    Affected Products : firewall firewall firewall_firmware
    • Published: Sep. 07, 2022
    • Modified: Jun. 17, 2025

  • 5.4

    MEDIUM
    CVE-2018-14520

    An issue was discovered in Kirby 2.5.12. The application allows malicious HTTP requests to be sent in order to trick a user into adding web pages.... Read more

    Affected Products : kirby
    • Published: Aug. 24, 2022
    • Modified: Jun. 17, 2025

  • 9.8

    CRITICAL
    CVE-2024-42565

    ERP commit 44bd04 was discovered to contain a SQL injection vulnerability via the id parameter at /index.php/basedata/contact/delete?action=delete.... Read more

    Affected Products : erp erp
    • Published: Aug. 20, 2024
    • Modified: Jun. 17, 2025

  • 5.3

    MEDIUM
    CVE-2024-45191

    An issue was discovered in Matrix libolm through 3.2.16. The AES implementation is vulnerable to cache-timing attacks due to use of S-boxes. This is related to software that uses a lookup table for the SubWord step. This refers to the libolm implementatio... Read more

    Affected Products : olm
    • Published: Aug. 22, 2024
    • Modified: Jun. 17, 2025

  • 6.5

    MEDIUM
    CVE-2024-21169

    Vulnerability in the Oracle Marketing product of Oracle E-Business Suite (component: Partners). Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to comp... Read more

    Affected Products : marketing
    • Published: Jul. 16, 2024
    • Modified: Jun. 17, 2025

  • 4.3

    MEDIUM
    CVE-2024-21154

    Vulnerability in the PeopleSoft Enterprise HCM Human Resources product of Oracle PeopleSoft (component: Human Resources). The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access ... Read more

    • Published: Jul. 16, 2024
    • Modified: Jun. 17, 2025

  • 8.1

    HIGH
    CVE-2024-21153

    Vulnerability in the Oracle Process Manufacturing Product Development product of Oracle E-Business Suite (component: Quality Management Specs). The supported version that is affected is 12.2.13. Easily exploitable vulnerability allows low privileged att... Read more

    • Published: Jul. 16, 2024
    • Modified: Jun. 17, 2025

  • 7.4

    HIGH
    CVE-2024-21147

    Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u411, 8u411-perf, 11.0.23, 17.0.11, 21.0.3, 22.0.1; O... Read more

    • Published: Jul. 16, 2024
    • Modified: Jun. 17, 2025

  • 8.1

    HIGH
    CVE-2024-21152

    Vulnerability in the Oracle Process Manufacturing Financials product of Oracle E-Business Suite (component: Allocation Rules). Supported versions that are affected are 12.2.12-12.2.13. Easily exploitable vulnerability allows low privileged attacker with ... Read more

    Affected Products : process_manufacturing_financials
    • Published: Jul. 16, 2024
    • Modified: Jun. 17, 2025
Showing 20 of 293527 Results