Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 5.0

    MEDIUM
    CVE-2014-3710

    The donote function in readelf.c in file through 5.20, as used in the Fileinfo component in PHP 5.4.34, does not ensure that sufficient note headers are present, which allows remote attackers to cause a denial of service (out-of-bounds read and applicatio... Read more

    Affected Products : ubuntu_linux debian_linux php
    • Published: Nov. 05, 2014
    • Modified: Apr. 12, 2025

  • 7.5

    HIGH
    CVE-2014-2374

    The AXN-NET Ethernet module accessory 3.04 for the Accuenergy Acuvim II allows remote attackers to discover passwords and modify settings via vectors involving JavaScript.... Read more

    Affected Products : axm-net acuvim_ii
    • Published: Nov. 05, 2014
    • Modified: Apr. 12, 2025

  • 7.5

    HIGH
    CVE-2014-2373

    The web server on the AXN-NET Ethernet module accessory 3.04 for the Accuenergy Acuvim II allows remote attackers to bypass authentication and modify settings via a direct request to an unspecified URL.... Read more

    Affected Products : axm-net acuvim_ii
    • Published: Nov. 05, 2014
    • Modified: Apr. 12, 2025

  • 7.1

    HIGH
    CVE-2014-2718

    ASUS RT-AC68U, RT-AC66R, RT-AC66U, RT-AC56R, RT-AC56U, RT-N66R, RT-N66U, RT-N56R, RT-N56U, and possibly other RT-series routers before firmware 3.0.0.4.376.x do not verify the integrity of firmware (1) update information or (2) downloaded updates, which a... Read more

    • Published: Nov. 04, 2014
    • Modified: Apr. 12, 2025

  • 6.8

    MEDIUM
    CVE-2014-3461

    hw/usb/bus.c in QEMU 1.6.2 allows remote attackers to execute arbitrary code via crafted savevm data, which triggers a heap-based buffer overflow, related to "USB post load checks."... Read more

    Affected Products : qemu
    • Published: Nov. 04, 2014
    • Modified: Apr. 12, 2025

  • 4.6

    MEDIUM
    CVE-2014-0223

    Integer overflow in the qcow_open function in block/qcow.c in QEMU before 1.7.2 allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a large image size, which triggers a buffer overflow or out-of-bounds read.... Read more

    Affected Products : qemu linux_enterprise_server
    • Published: Nov. 04, 2014
    • Modified: Apr. 12, 2025

  • 7.5

    HIGH
    CVE-2014-0222

    Integer overflow in the qcow_open function in block/qcow.c in QEMU before 1.7.2 allows remote attackers to cause a denial of service (crash) via a large L2 table in a QCOW version 1 image.... Read more

    Affected Products : qemu linux_enterprise_server
    • Published: Nov. 04, 2014
    • Modified: Apr. 12, 2025

  • 7.5

    HIGH
    CVE-2014-0182

    Heap-based buffer overflow in the virtio_load function in hw/virtio/virtio.c in QEMU before 1.7.2 might allow remote attackers to execute arbitrary code via a crafted config length in a savevm image.... Read more

    Affected Products : qemu
    • Published: Nov. 04, 2014
    • Modified: Apr. 12, 2025

  • 7.5

    HIGH
    CVE-2013-6399

    Array index error in the virtio_load function in hw/virtio/virtio.c in QEMU before 1.7.2 allows remote attackers to execute arbitrary code via a crafted savevm image.... Read more

    Affected Products : qemu
    • Published: Nov. 04, 2014
    • Modified: Apr. 12, 2025

  • 7.5

    HIGH
    CVE-2013-4542

    The virtio_scsi_load_request function in hw/scsi/scsi-bus.c in QEMU before 1.7.2 might allow remote attackers to execute arbitrary code via a crafted savevm image, which triggers an out-of-bounds array access.... Read more

    Affected Products : qemu
    • Published: Nov. 04, 2014
    • Modified: Apr. 12, 2025

  • 7.5

    HIGH
    CVE-2013-4541

    The usb_device_post_load function in hw/usb/bus.c in QEMU before 1.7.2 might allow remote attackers to execute arbitrary code via a crafted savevm image, related to a negative setup_len or setup_index value.... Read more

    Affected Products : qemu
    • Published: Nov. 04, 2014
    • Modified: Apr. 12, 2025

  • 7.5

    HIGH
    CVE-2013-4540

    Buffer overflow in scoop_gpio_handler_update in QEMU before 1.7.2 might allow remote attackers to execute arbitrary code via a large (1) prev_level, (2) gpio_level, or (3) gpio_dir value in a savevm image.... Read more

    Affected Products : qemu opensuse
    • Published: Nov. 04, 2014
    • Modified: Apr. 12, 2025

  • 7.5

    HIGH
    CVE-2013-4539

    Multiple buffer overflows in the tsc210x_load function in hw/input/tsc210x.c in QEMU before 1.7.2 might allow remote attackers to execute arbitrary code via a crafted (1) precision, (2) nextprecision, (3) function, or (4) nextfunction value in a savevm im... Read more

    Affected Products : qemu
    • Published: Nov. 04, 2014
    • Modified: Apr. 12, 2025

  • 7.5

    HIGH
    CVE-2013-4538

    Multiple buffer overflows in the ssd0323_load function in hw/display/ssd0323.c in QEMU before 1.7.2 allow remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via crafted (1) cmd_len, (2) row, or (3) col val... Read more

    Affected Products : qemu
    • Published: Nov. 04, 2014
    • Modified: Apr. 12, 2025

  • 7.5

    HIGH
    CVE-2013-4537

    The ssi_sd_transfer function in hw/sd/ssi-sd.c in QEMU before 1.7.2 allows remote attackers to execute arbitrary code via a crafted arglen value in a savevm image.... Read more

    Affected Products : qemu
    • Published: Nov. 04, 2014
    • Modified: Apr. 12, 2025

  • 7.5

    HIGH
    CVE-2013-4534

    Buffer overflow in hw/intc/openpic.c in QEMU before 1.7.2 allows remote attackers to cause a denial of service or possibly execute arbitrary code via vectors related to IRQDest elements.... Read more

    Affected Products : qemu
    • Published: Nov. 04, 2014
    • Modified: Apr. 12, 2025

  • 7.5

    HIGH
    CVE-2013-4533

    Buffer overflow in the pxa2xx_ssp_load function in hw/arm/pxa2xx.c in QEMU before 1.7.2 allows remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted s->rx_level value in a savevm image.... Read more

    Affected Products : qemu
    • Published: Nov. 04, 2014
    • Modified: Apr. 12, 2025

  • 7.5

    HIGH
    CVE-2013-4531

    Buffer overflow in target-arm/machine.c in QEMU before 1.7.2 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a negative value in cpreg_vmstate_array_len in a savevm image.... Read more

    Affected Products : qemu
    • Published: Nov. 04, 2014
    • Modified: Apr. 12, 2025

  • 7.5

    HIGH
    CVE-2013-4530

    Buffer overflow in hw/ssi/pl022.c in QEMU before 1.7.2 allows remote attackers to cause a denial of service or possibly execute arbitrary code via crafted tx_fifo_head and rx_fifo_head values in a savevm image.... Read more

    Affected Products : qemu
    • Published: Nov. 04, 2014
    • Modified: Apr. 12, 2025

  • 7.5

    HIGH
    CVE-2013-4529

    Buffer overflow in hw/pci/pcie_aer.c in QEMU before 1.7.2 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large log_num value in a savevm image.... Read more

    Affected Products : qemu
    • Published: Nov. 04, 2014
    • Modified: Apr. 12, 2025
Showing 20 of 294514 Results