Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 10.0

    HIGH
    CVE-2003-0240

    The web-based administration capability for various Axis Network Camera products allows remote attackers to bypass access restrictions and modify configuration via an HTTP request to the admin/admin.shtml containing a leading // (double slash).... Read more

    • EPSS Score: %22.36
    • Published: Jun. 09, 2003
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-1457

    SQL injection vulnerability in search.php for L-Forum 2.40 allows remote attackers to execute arbitrary SQL statements via the search parameter.... Read more

    Affected Products : l-forum
    • EPSS Score: %1.58
    • Published: Jun. 09, 2003
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2003-0321

    Multiple buffer overflows in BitchX IRC client 1.0-0c19 and earlier allow remote malicious IRC servers to cause a denial of service (crash) and possibly execute arbitrary code via long hostnames, nicknames, or channel names, which are not properly handled... Read more

    Affected Products : bitchx
    • EPSS Score: %1.22
    • Published: Jun. 09, 2003
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2003-0322

    Integer overflow in BitchX IRC client 1.0-0c19 and earlier allows remote malicious IRC servers to cause a denial of service (crash).... Read more

    Affected Products : bitchx
    • EPSS Score: %0.48
    • Published: Jun. 09, 2003
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2003-0225

    The ASP function Response.AddHeader in Microsoft Internet Information Server (IIS) 4.0 and 5.0 does not limit memory requests when constructing headers, which allow remote attackers to generate a large header to cause a denial of service (memory consumpti... Read more

    • EPSS Score: %29.22
    • Published: Jun. 09, 2003
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2003-0324

    Buffer overflows in EPIC IRC Client (EPIC4) 1.0.1 allows remote malicious IRC servers to cause a denial of service (crash) and possibly execute arbitrary code via long replies that are not properly handled by the (1) userhost_cmd_returned function, or (2)... Read more

    Affected Products : epic4
    • EPSS Score: %0.93
    • Published: Jun. 09, 2003
    • Modified: Apr. 03, 2025

  • 7.6

    HIGH
    CVE-2003-0332

    The ISAPI extension in BadBlue 1.7 through 2.2, and possibly earlier versions, modifies the first two letters of a filename extension after performing a security check, which allows remote attackers to bypass authentication via a filename with a .ats exte... Read more

    Affected Products : badblue
    • EPSS Score: %1.98
    • Published: Jun. 09, 2003
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2003-0224

    Buffer overflow in ssinc.dll for Microsoft Internet Information Services (IIS) 5.0 allows local users to execute arbitrary code via a web page with a Server Side Include (SSI) directive with a long filename, aka "Server Side Include Web Pages Buffer Overr... Read more

    Affected Products : internet_information_services iis
    • EPSS Score: %15.45
    • Published: Jun. 09, 2003
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2003-0362

    Buffer overflow in gPS before 0.10.2 may allow local users to cause a denial of service (SIGSEGV) in rgpsp via long command lines.... Read more

    Affected Products : debian_linux
    • EPSS Score: %0.45
    • Published: Jun. 09, 2003
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2003-0305

    The Service Assurance Agent (SAA) in Cisco IOS 12.0 through 12.2, aka Response Time Reporter (RTR), allows remote attackers to cause a denial of service (crash) via malformed RTR packets to port 1967.... Read more

    Affected Products : ios
    • EPSS Score: %0.66
    • Published: Jun. 09, 2003
    • Modified: Apr. 03, 2025

  • 4.3

    MEDIUM
    CVE-2003-0318

    Cross-site scripting (XSS) vulnerability in the Statistics module for PHP-Nuke 6.0 and earlier allows remote attackers to insert arbitrary web script via the year parameter.... Read more

    Affected Products : php-nuke
    • EPSS Score: %0.02
    • Published: Jun. 09, 2003
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2003-0331

    SQL injection vulnerability in ttForum allows remote attackers to execute arbitrary SQL and gain ttForum Administrator privileges via the Ignorelist-Textfield argument in the Preferences page.... Read more

    Affected Products : ttforum
    • EPSS Score: %0.64
    • Published: Jun. 09, 2003
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2003-0303

    SQL injection vulnerability in one||zero (aka One or Zero) Helpdesk 1.4 rc4 allows remote attackers to modify arbitrary ticket number descriptions via the sg parameter.... Read more

    Affected Products : oneorzero_helpdesk
    • EPSS Score: %0.33
    • Published: Jun. 09, 2003
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-2003-0194

    tcpdump does not properly drop privileges to the pcap user when starting up.... Read more

    Affected Products : linux tcpdump
    • EPSS Score: %0.07
    • Published: Jun. 09, 2003
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2003-0356

    Multiple off-by-one vulnerabilities in Ethereal 0.9.11 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via the (1) AIM, (2) GIOP Gryphon, (3) OSPF, (4) PPTP, (5) Quake, (6) Quake2, (7) Quake3, (8) Rsync,... Read more

    Affected Products : ethereal
    • EPSS Score: %28.41
    • Published: Jun. 09, 2003
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2003-0227

    The logging capability for unicast and multicast transmissions in the ISAPI extension for Microsoft Windows Media Services in Microsoft Windows NT 4.0 and 2000, nsiislog.dll, allows remote attackers to cause a denial of service in Internet Information Ser... Read more

    Affected Products : windows_2000 windows_nt
    • EPSS Score: %48.65
    • Published: Jun. 09, 2003
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2003-0357

    Multiple integer overflow vulnerabilities in Ethereal 0.9.11 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via the (1) Mount and (2) PPP dissectors.... Read more

    Affected Products : ethereal
    • EPSS Score: %14.38
    • Published: Jun. 09, 2003
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2003-0188

    lv reads a .lv file from the current working directory, which allows local users to execute arbitrary commands as other lv users by placing malicious .lv files into other directories.... Read more

    Affected Products : linux lv lv
    • EPSS Score: %0.04
    • Published: Jun. 09, 2003
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2003-0245

    Vulnerability in the apr_psprintf function in the Apache Portable Runtime (APR) library for Apache 2.0.37 through 2.0.45 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via long strings, as demonstrated usi... Read more

    Affected Products : http_server
    • EPSS Score: %78.92
    • Published: Jun. 09, 2003
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2002-1460

    L-Forum 2.40 and earlier does not properly verify whether a file was uploaded or if the associated variables were set by POST (attachment, attachment_name, attachment_size and attachment_type), which allows remote attackers to read arbitrary files.... Read more

    Affected Products : l-forum
    • EPSS Score: %1.41
    • Published: Jun. 09, 2003
    • Modified: Apr. 03, 2025
Showing 20 of 291255 Results