Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 3.6

    LOW
    CVE-2003-0246

    The ioperm system call in Linux kernel 2.4.20 and earlier does not properly restrict privileges, which allows local users to gain read or write access to certain I/O ports.... Read more

    Affected Products : linux_kernel
    • EPSS Score: %0.12
    • Published: Jun. 16, 2003
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2003-0299

    The IMAP Client, as used in mutt 1.4.1 and Balsa 2.0.10, allows remote malicious IMAP servers to cause a denial of service and possibly execute arbitrary code via certain large mailbox size values that cause either integer signedness errors or integer ove... Read more

    Affected Products : mutt balsa
    • EPSS Score: %0.89
    • Published: Jun. 16, 2003
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2003-0377

    SQL injection vulnerability in the web-based administration interface for iisPROTECT 2.2-r4, and possibly earlier versions, allows remote attackers to insert arbitrary SQL and execute code via certain variables, as demonstrated using the GroupName variabl... Read more

    Affected Products : iisprotect
    • EPSS Score: %0.90
    • Published: Jun. 16, 2003
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2003-0289

    Format string vulnerability in scsiopen.c of the cdrecord program in cdrtools 2.0 allows local users to gain privileges via format string specifiers in the dev parameter.... Read more

    Affected Products : cdrecord
    • EPSS Score: %0.13
    • Published: Jun. 16, 2003
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2003-0286

    SQL injection vulnerability in register.asp in Snitz Forums 2000 before 3.4.03, and possibly 3.4.07 and earlier, allows remote attackers to execute arbitrary stored procedures via the Email variable.... Read more

    Affected Products : snitz_forums_2000
    • EPSS Score: %1.23
    • Published: Jun. 16, 2003
    • Modified: Apr. 03, 2025

  • 6.8

    MEDIUM
    CVE-2003-0310

    Cross-site scripting (XSS) vulnerability in articleview.php for eZ publish 2.2 allows remote attackers to insert arbitrary web script.... Read more

    Affected Products : ez_publish
    • EPSS Score: %0.37
    • Published: Jun. 16, 2003
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2003-0297

    c-client IMAP Client, as used in imap-2002b and Pine 4.53, allows remote malicious IMAP servers to cause a denial of service (crash) and possibly execute arbitrary code via certain large (1) literal and (2) mailbox size values that cause either integer si... Read more

    Affected Products : pine c-client imap-2002b
    • EPSS Score: %0.91
    • Published: Jun. 16, 2003
    • Modified: Apr. 03, 2025

  • 2.6

    LOW
    CVE-2003-0282

    Directory traversal vulnerability in UnZip 5.50 allows attackers to overwrite arbitrary files via invalid characters between two . (dot) characters, which are filtered and result in a ".." sequence.... Read more

    • EPSS Score: %12.23
    • Published: Jun. 16, 2003
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2003-0354

    Unknown vulnerability in GNU Ghostscript before 7.07 allows attackers to execute arbitrary commands, even when -dSAFER is enabled, via a PostScript file that causes the commands to be executed from a malicious print job.... Read more

    Affected Products : linux
    • EPSS Score: %0.82
    • Published: Jun. 16, 2003
    • Modified: Apr. 03, 2025

  • 6.8

    MEDIUM
    CVE-2003-0217

    Cross-site scripting (XSS) vulnerability in Neoteris Instant Virtual Extranet (IVE) 3.01 and earlier allows remote attackers to insert arbitrary web script and bypass authentication via a certain CGI script.... Read more

    Affected Products : instant_virtual_extranet
    • EPSS Score: %0.32
    • Published: Jun. 16, 2003
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2003-0195

    CUPS before 1.1.19 allows remote attackers to cause a denial of service via a partial printing request to the IPP port (631), which does not time out.... Read more

    Affected Products : slackware_linux
    • EPSS Score: %16.37
    • Published: Jun. 16, 2003
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2003-0364

    The TCP/IP fragment reassembly handling in the Linux kernel 2.4 allows remote attackers to cause a denial of service (CPU consumption) via certain packets that cause a large number of hash table collisions.... Read more

    Affected Products : linux
    • EPSS Score: %3.34
    • Published: Jun. 16, 2003
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2003-0248

    The mxcsr code in Linux kernel 2.4 allows attackers to modify CPU state registers via a malformed address.... Read more

    Affected Products : linux
    • EPSS Score: %1.44
    • Published: Jun. 16, 2003
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2003-0376

    Buffer overflow in Eudora 5.2.1 allows remote attackers to cause a denial of service (crash and failed restart) and possibly execute arbitrary code via an Attachment Converted argument with a large number of . (dot) characters.... Read more

    Affected Products : eudora
    • EPSS Score: %4.81
    • Published: Jun. 16, 2003
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2003-0344

    Buffer overflow in Microsoft Internet Explorer 5.01, 5.5, and 6.0 allows remote attackers to execute arbitrary code via / (slash) characters in the Type property of an Object tag in a web page.... Read more

    Affected Products : internet_explorer ie
    • EPSS Score: %74.31
    • Published: Jun. 16, 2003
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2003-0280

    Multiple buffer overflows in the SMTP Service for ESMTP CMailServer 4.0.2003.03.27 allow remote attackers to execute arbitrary code via long (1) MAIL FROM or (2) RCPT TO commands.... Read more

    Affected Products : cmailserver
    • EPSS Score: %11.16
    • Published: Jun. 16, 2003
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2003-0301

    The IMAP Client for Outlook Express 6.00.2800.1106 allows remote malicious IMAP servers to cause a denial of service (crash) via certain large literal size values that cause either integer signedness errors or integer overflow errors.... Read more

    Affected Products : outlook_express
    • EPSS Score: %4.28
    • Published: Jun. 16, 2003
    • Modified: Apr. 03, 2025

  • 5.1

    MEDIUM
    CVE-2003-0275

    SSI.php in YaBB SE 1.5.2 allows remote attackers to execute arbitrary PHP code by modifying the sourcedir parameter to reference a URL on a remote web server that contains the code.... Read more

    Affected Products : yabb
    • EPSS Score: %0.75
    • Published: Jun. 16, 2003
    • Modified: Apr. 03, 2025

  • 6.8

    MEDIUM
    CVE-2003-0287

    Cross-site scripting (XSS) vulnerability in Movable Type before 2.6, and possibly other versions including 2.63, allows remote attackers to insert arbitrary web script or HTML via the Name textbox, possibly when the "Allow HTML in comments?" option is ena... Read more

    Affected Products : movable_type
    • EPSS Score: %1.24
    • Published: Jun. 16, 2003
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2003-0296

    The IMAP Client for Evolution 1.2.4 allows remote malicious IMAP servers to cause a denial of service and possibly execute arbitrary code via certain large literal size values that cause either integer signedness errors or integer overflow errors.... Read more

    Affected Products : evolution
    • EPSS Score: %0.95
    • Published: Jun. 16, 2003
    • Modified: Apr. 03, 2025
Showing 20 of 291222 Results