Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 5.0

    MEDIUM
    CVE-2003-0747

    wgate.dll in SAP Internet Transaction Server (ITS) 4620.2.0.323011 allows remote attackers to obtain potentially sensitive information such as directory structure and operating system via incorrect parameters (1) ~service, (2) ~templatelanguage, (3) ~lang... Read more

    Affected Products : internet_transaction_server
    • EPSS Score: %6.86
    • Published: Oct. 20, 2003
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2003-0708

    Format string vulnerability in LinuxNode (node) before 0.3.2 may allow attackers to cause a denial of service or execute arbitrary code.... Read more

    Affected Products : linuxnode
    • EPSS Score: %0.91
    • Published: Oct. 20, 2003
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2003-0707

    Buffer overflow in LinuxNode (node) before 0.3.2 allows remote attackers to execute arbitrary code.... Read more

    Affected Products : linuxnode
    • EPSS Score: %2.04
    • Published: Oct. 20, 2003
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2003-0753

    nphpd.php in newsPHP 216 and earlier allows remote attackers to read arbitrary files via a full pathname to the target file in the nphp_config[LangFile] parameter.... Read more

    Affected Products : newsphp
    • EPSS Score: %0.59
    • Published: Oct. 20, 2003
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-2003-1062

    Unknown vulnerability in the sysinfo system call for Solaris for SPARC 2.6 through 9, and Solaris for x86 2.6, 7, and 8, allows local users to read kernel memory.... Read more

    Affected Products : solaris sunos
    • EPSS Score: %0.06
    • Published: Oct. 15, 2003
    • Modified: Apr. 03, 2025

  • 1.2

    LOW
    CVE-2003-1061

    Race condition in Solaris 2.6 through 9 allows local users to cause a denial of service (kernel panic), as demonstrated via the namefs function, pipe, and certain STREAMS routines.... Read more

    Affected Products : solaris sunos
    • EPSS Score: %0.06
    • Published: Oct. 14, 2003
    • Modified: Apr. 03, 2025

  • 9.8

    CRITICAL
    CVE-2003-0791

    The Script.prototype.freeze/thaw functionality in Mozilla 1.4 and earlier allows attackers to execute native methods by modifying the string used as input to the script.thaw JavaScript function, which is then deserialized and executed.... Read more

    Affected Products : mozilla openserver
    • EPSS Score: %1.15
    • Published: Oct. 07, 2003
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2003-0783

    Multiple buffer overflows in hztty 2.0 allow local users to gain root privileges.... Read more

    Affected Products : hztty
    • EPSS Score: %0.20
    • Published: Oct. 06, 2003
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2003-0785

    ipmasq before 3.5.12, in certain configurations, may forward packets to the external interface even if the packets are not associated with an established connection, which could allow remote attackers to bypass intended filtering.... Read more

    Affected Products : ipmasq
    • EPSS Score: %0.31
    • Published: Oct. 06, 2003
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2003-0827

    The DB2 Discovery Service for IBM DB2 before FixPak 10a allows remote attackers to cause a denial of service (crash) via a long packet to UDP port 523.... Read more

    Affected Products : db2_universal_database
    • EPSS Score: %0.79
    • Published: Oct. 06, 2003
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2003-0697

    Format string vulnerability in lpd in the bos.rte.printers fileset for AIX 4.3 through 5.2, with debug enabled, allows local users to cause a denial of service (crash) or gain root privileges.... Read more

    Affected Products : aix
    • EPSS Score: %0.05
    • Published: Oct. 06, 2003
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2003-0680

    Unknown vulnerability in NFS for SGI IRIX 6.5.21 and earlier may allow an NFS client to bypass read-only restrictions.... Read more

    Affected Products : irix
    • EPSS Score: %0.49
    • Published: Oct. 06, 2003
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2003-0803

    Nokia Electronic Documentation (NED) 5.0 allows remote attackers to use NED as an open HTTP proxy via a URL in the location parameter, which NED accesses and returns to the user.... Read more

    Affected Products : electronic_documentation
    • EPSS Score: %2.01
    • Published: Oct. 06, 2003
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2003-0802

    Nokia Electronic Documentation (NED) 5.0 allows remote attackers to obtain a directory listing of the WebLogic web root, and the physical path of the NED server, via a "retrieve" action with a location parameter of . (dot).... Read more

    Affected Products : electronic_documentation
    • EPSS Score: %2.27
    • Published: Oct. 06, 2003
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2003-0805

    Multiple buffer overflows in UMN gopher daemon (gopherd) 2.x and 3.x before 3.0.6 allows attackers to execute arbitrary code via (1) a long filename as a result of a LIST command, and (2) the GSisText function, which calculates the view-type.... Read more

    Affected Products : gopherd
    • EPSS Score: %5.56
    • Published: Oct. 06, 2003
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2003-0682

    "Memory bugs" in OpenSSH 3.7.1 and earlier, with unknown impact, a different set of vulnerabilities than CVE-2003-0693 and CVE-2003-0695.... Read more

    Affected Products : openssh
    • EPSS Score: %0.42
    • Published: Oct. 06, 2003
    • Modified: Apr. 03, 2025

  • 6.8

    MEDIUM
    CVE-2002-1567

    Cross-site scripting (XSS) vulnerability in Apache Tomcat 4.1 allows remote attackers to execute arbitrary web script and steal cookies via a URL with encoded newlines followed by a request to a .jsp file whose name contains the script.... Read more

    Affected Products : tomcat
    • EPSS Score: %48.22
    • Published: Oct. 06, 2003
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2003-0692

    KDM in KDE 3.1.3 and earlier uses a weak session cookie generation algorithm that does not provide 128 bits of entropy, which allows attackers to guess session cookies via brute force methods and gain access to the user session.... Read more

    Affected Products : kde
    • EPSS Score: %1.21
    • Published: Oct. 06, 2003
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2003-0690

    KDM in KDE 3.1.3 and earlier does not verify whether the pam_setcred function call succeeds, which may allow attackers to gain root privileges by triggering error conditions within PAM modules, as demonstrated in certain configurations of the MIT pam_krb5... Read more

    Affected Products : kde
    • EPSS Score: %2.08
    • Published: Oct. 06, 2003
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2003-0758

    Buffer overflow in db2dart in IBM DB2 Universal Data Base 7.2 before Fixpak 10 allows local users to gain root privileges via a long command line argument.... Read more

    Affected Products : db2_universal_database
    • EPSS Score: %0.15
    • Published: Oct. 06, 2003
    • Modified: Apr. 03, 2025
Showing 20 of 291808 Results