Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 4.9

    MEDIUM
    CVE-2006-5396

    The tcp_fuse_rcv_drain function in the Sun Solaris 10 kernel before 20061017, when TCP Fusion is enabled, allows local users to cause a denial of service (system crash) via a TCP loopback connection with both endpoints on the same system.... Read more

    Affected Products : solaris
    • Published: Oct. 18, 2006
    • Modified: Apr. 09, 2025

  • 5.0

    MEDIUM
    CVE-2006-5391

    Xfire 1.64 and earlier allows remote attackers to cause a denial of service (client application crash) via a long string to UDP port 25777.... Read more

    Affected Products : xfire
    • Published: Oct. 18, 2006
    • Modified: Apr. 09, 2025

  • 7.5

    HIGH
    CVE-2006-5388

    SQL injection vulnerability in index.php in WebSPELL 4.01.01 and earlier allows remote attackers to execute arbitrary SQL commands via the getsquad parameter, a different vector than CVE-2006-4783.... Read more

    Affected Products : webspell
    • Published: Oct. 18, 2006
    • Modified: Apr. 09, 2025

  • 7.5

    HIGH
    CVE-2006-5386

    PHP remote file inclusion vulnerability in process.php in NuralStorm Webmail 0.98b and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the DEFAULT_SKIN parameter.... Read more

    Affected Products : nuralstorm_webmail
    • Published: Oct. 18, 2006
    • Modified: Apr. 09, 2025

  • 5.5

    MEDIUM
    CVE-2006-5393

    Cisco Secure Desktop (CSD) does not require that the ClearPageFileAtShutdown (aka CCE-Winv2.0-407) registry value equals 1, which might allow local users to read certain memory pages that were written during another user's SSL VPN session.... Read more

    Affected Products : secure_desktop
    • Published: Oct. 18, 2006
    • Modified: Apr. 09, 2025

  • 6.8

    MEDIUM
    CVE-2006-4811

    Integer overflow in Qt 3.3 before 3.3.7, 4.1 before 4.1.5, and 4.2 before 4.2.1, as used in the KDE khtml library, kdelibs 3.1.3, and possibly other packages, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code... Read more

    Affected Products : qt kdelibs
    • Published: Oct. 18, 2006
    • Modified: Apr. 09, 2025

  • 7.5

    HIGH
    CVE-2006-5379

    The accelerated rendering functionality of NVIDIA Binary Graphics Driver (binary blob driver) For Linux v8774 and v8762, and probably on other operating systems, allows local and remote attackers to execute arbitrary code via a large width value in a font... Read more

    Affected Products : binary_graphics_driver
    • Published: Oct. 18, 2006
    • Modified: Apr. 09, 2025

  • 5.0

    MEDIUM
    CVE-2006-5381

    Contenido CMS stores sensitive data under the web root with insufficient access control, which allows remote attackers to obtain database credentials and other information via a direct request to (1) db_msql.inc, (2) db_mssql.inc, (3) db_mysqli.inc, (4) d... Read more

    Affected Products : contendio
    • Published: Oct. 18, 2006
    • Modified: Apr. 09, 2025

  • 7.5

    HIGH
    CVE-2006-5380

    Remote file inclusion vulnerability in Contenido CMS allows remote attackers to execute arbitrary PHP code via a URL in the contenido_path parameter to (1) cms/dbfs.php or (2) cms/front_content.php. NOTE: CVE disputes this issue for version 4.6.15, becau... Read more

    Affected Products : contendio
    • Published: Oct. 18, 2006
    • Modified: Apr. 09, 2025

  • 9.0

    HIGH
    CVE-2006-5335

    Multiple unspecified vulnerabilities in Oracle Database 10.1.0.5 and 10.2.0.2 have unknown impact and remote authenticated attack vectors related to (1) Vuln# DB04 and sys.dbms_cdc_impdp in the (a) Change Data Capture (CDC) component; (2) Vuln# DB07, (3) ... Read more

    Affected Products : database_server
    • Published: Oct. 18, 2006
    • Modified: Apr. 09, 2025

  • 9.0

    HIGH
    CVE-2006-5336

    Multiple unspecified vulnerabilities in the Change Data Capture (CDC) component in Oracle Database 9.2.0.7, 10.1.0.5, and have unknown impact and remote authenticated attack vectors related to (1) sys.dbms_cdc_ipublish (Vuln# DB05) and (2) sys.dbms_cdc_is... Read more

    Affected Products : database_server
    • Published: Oct. 18, 2006
    • Modified: Apr. 09, 2025

  • 9.0

    HIGH
    CVE-2006-5338

    Unspecified vulnerability in the Core RDBMS component in Oracle Database 10.1.0.5 has unknown impact and remote authenticated attack vectors related to sys.dbms_sqltune, aka Vuln# DB10. NOTE: as of 20061023, Oracle has not disputed reports from reliable ... Read more

    Affected Products : database_server
    • Published: Oct. 18, 2006
    • Modified: Apr. 09, 2025

  • 9.0

    HIGH
    CVE-2006-5339

    Unspecified vulnerability in Oracle Spatial component in Oracle Database 8.1.7.4, 9.0.1.5, 9.2.0.7, and 10.1.0.4 has unknown impact and remote authenticated attack vectors related to mdsys.sdo_geom, aka Vuln# DB11. NOTE: as of 20061023, Oracle has not di... Read more

    Affected Products : database_server
    • Published: Oct. 18, 2006
    • Modified: Apr. 09, 2025

  • 9.0

    HIGH
    CVE-2006-5341

    Multiple unspecified vulnerabilities in XMLDB component in Oracle Database 9.2.0.8, 10.1.0.5, and 10.2.0.2 have unknown impact and remote authenticated attack vectors, aka (1) Vuln# DB14 and (2) DB15 related to xdb.dbms_xdbz. NOTE: as of 20061023, Oracle... Read more

    Affected Products : database_server
    • Published: Oct. 18, 2006
    • Modified: Apr. 09, 2025

  • 9.0

    HIGH
    CVE-2006-5343

    Unspecified vulnerability in Database Scheduler component in Oracle Database 10.1.0.3 has unknown impact and remote authenticated attack vectors related to sys.dbms_scheduler, aka Vuln# DB19.... Read more

    Affected Products : database_server
    • Published: Oct. 18, 2006
    • Modified: Apr. 09, 2025

  • 9.0

    HIGH
    CVE-2006-5345

    Unspecified vulnerability in Oracle Spatial component in Oracle Database 9.0.1.5, 9.2.0.7, and 10.1.0.4 has unknown impact and remote authenticated attack vectors related to mdsys.sdo_geom, aka Vuln# DB22. NOTE: as of 20061023, Oracle has not disputed re... Read more

    Affected Products : database_server
    • Published: Oct. 18, 2006
    • Modified: Apr. 09, 2025

  • 7.6

    HIGH
    CVE-2006-5346

    Unspecified vulnerability in Oracle HTTP Server 9.2.0.7, as used in Oracle Collaboration Suite 9.0.4.2 and Oracle E-Business Suite and Applications 11.5.10CU2, has unknown impact and remote attack vectors related to htdigest, aka Vuln# OHS02.... Read more

    • Published: Oct. 18, 2006
    • Modified: Apr. 09, 2025

  • 10.0

    HIGH
    CVE-2006-5347

    Unspecified vulnerability in Oracle HTTP Server 9.2.0.7 and Oracle Collaboration Suite 9.0.4.2 has unknown impact and remote attack vectors related to HTTPS and SSL, aka Vuln# OHS04.... Read more

    Affected Products : http_server
    • Published: Oct. 18, 2006
    • Modified: Apr. 09, 2025

  • 7.2

    HIGH
    CVE-2006-5350

    Unspecified vulnerability in Oracle HTTP Server 9.2.0.7 and Oracle E-Business Suite and Applications 11.5.10CU2 has unknown impact and local attack vectors, aka Vuln# OHS08.... Read more

    Affected Products : e-business_suite http_server
    • Published: Oct. 18, 2006
    • Modified: Apr. 09, 2025

  • 9.0

    HIGH
    CVE-2006-5351

    Multiple unspecified vulnerabilities in Oracle Application Express (formerly Oracle HTML DB) 1.5 up to 2.0 have unknown impact and remote attack vectors, aka Vuln# (1) APEX01, (2) APEX02, (3) APEX03, (4) APEX05, (5) APEX06, (6) APEX07, (7) APEX08, (8) APE... Read more

    Affected Products : apex
    • Published: Oct. 18, 2006
    • Modified: Apr. 09, 2025
Showing 20 of 294522 Results