Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 7.5

    HIGH
    CVE-2002-0691

    Microsoft Internet Explorer 5.01 and 5.5 allows remote attackers to execute scripts in the Local Computer zone via a URL that references a local HTML resource file, a variant of "Cross-Site Scripting in Local HTML Resource" as identified by CAN-2002-0189.... Read more

    Affected Products : internet_explorer
    • EPSS Score: %15.06
    • Published: Sep. 24, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0980

    The Web Folder component for Internet Explorer 5.5 and 6.0 writes an error message to a known location in the temporary folder, which allows remote attackers to execute arbitrary code by injecting it into the error message, then referring to the error mes... Read more

    Affected Products : internet_explorer outlook_express
    • EPSS Score: %40.45
    • Published: Sep. 24, 2002
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2002-0988

    Buffer overflow in X server (Xsco) in OpenUNIX 8.0.0 and UnixWare 7.1.1, possibly related to XBM/xkbcomp capabilities.... Read more

    Affected Products : unixware openunix
    • EPSS Score: %1.00
    • Published: Sep. 24, 2002
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2002-1124

    Multiple buffer overflows in purity 1-16 allow local users to gain privileges and modify high scores tables.... Read more

    Affected Products : purity
    • EPSS Score: %0.14
    • Published: Sep. 24, 2002
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2002-0974

    Help and Support Center for Windows XP allows remote attackers to delete arbitrary files via a link to the hcp: protocol that accesses uplddrvinfo.htm.... Read more

    Affected Products : windows_xp
    • EPSS Score: %53.64
    • Published: Sep. 24, 2002
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2002-0648

    The legacy <script> data-island capability for XML in Microsoft Internet Explorer 5.01, 5.5, and 6.0 allows remote attackers to read arbitrary XML files, and portions of other files, via a URL whose "src" attribute redirects to a local file.... Read more

    Affected Products : internet_explorer
    • EPSS Score: %59.28
    • Published: Sep. 24, 2002
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2002-1615

    Multiple buffer overflows in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allow local users to execute arbitrary code via (1) msgchk or (2) .upd..loader.... Read more

    Affected Products : hp-ux tru64
    • EPSS Score: %0.09
    • Published: Sep. 13, 2002
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2002-1612

    Buffer overflow in mailcv in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to gain privileges.... Read more

    Affected Products : hp-ux tru64
    • EPSS Score: %0.08
    • Published: Sep. 13, 2002
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2002-1613

    Buffer overflow in ps in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to gain privileges.... Read more

    Affected Products : hp-ux tru64
    • EPSS Score: %0.08
    • Published: Sep. 10, 2002
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2002-1614

    Buffer overflow in HP Tru64 UNIX allows local users to execute arbitrary code via a long argument to /usr/bin/at.... Read more

    Affected Products : hp-ux tru64
    • EPSS Score: %0.90
    • Published: Sep. 09, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0859

    Buffer overflow in the OpenDataSource function of the Jet engine on Microsoft SQL Server 2000 allows remote attackers to execute arbitrary code.... Read more

    Affected Products : sql_server jet
    • EPSS Score: %35.66
    • Published: Sep. 05, 2002
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2002-0654

    Apache 2.0 through 2.0.39 on Windows, OS2, and Netware allows remote attackers to determine the full pathname of the server via (1) a request for a .var file, which leaks the pathname in the resulting error message, or (2) via an error message that occurs... Read more

    Affected Products : http_server
    • EPSS Score: %60.20
    • Published: Sep. 05, 2002
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2002-0093

    Buffer overflow in ipcs for HP Tru64 UNIX 4.0f through 5.1a may allow attackers to execute arbitrary code, a different vulnerability than CVE-2001-0423.... Read more

    Affected Products : tru64
    • EPSS Score: %0.46
    • Published: Sep. 05, 2002
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2002-0679

    Buffer overflow in Common Desktop Environment (CDE) ToolTalk RPC database server (rpc.ttdbserverd) allows remote attackers to execute arbitrary code via an argument to the _TT_CREATE_FILE procedure.... Read more

    • EPSS Score: %70.87
    • Published: Sep. 05, 2002
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2002-0632

    Vulnerability in SGI BDS (Bulk Data Service) BDSPro 2.4 and earlier allows clients to read arbitrary files on a BDS server.... Read more

    Affected Products : irix
    • EPSS Score: %0.71
    • Published: Sep. 05, 2002
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2002-0853

    Cisco Virtual Private Network (VPN) Client 3.5.4 and earlier allows remote attackers to cause a denial of service (CPU consumption) via a packet with a zero-length payload.... Read more

    Affected Products : vpn_client
    • EPSS Score: %1.64
    • Published: Sep. 05, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0870

    The original patch for the Cisco Content Service Switch 11000 Series authentication bypass vulnerability (CVE-2001-0622) was incomplete, which still allows remote attackers to gain additional privileges by directly requesting the web management URL instea... Read more

    Affected Products : content_services_switch_11000 webns
    • EPSS Score: %0.46
    • Published: Sep. 05, 2002
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2002-0854

    Buffer overflows in ISDN Point to Point Protocol (PPP) daemon (ipppd) in the i4l package on SuSE 7.3, 8.0, and possibly other operating systems, may allow local users to gain privileges.... Read more

    Affected Products : suse_linux
    • EPSS Score: %0.06
    • Published: Sep. 05, 2002
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2002-0720

    A handler routine for the Network Connection Manager (NCM) in Windows 2000 allows local users to gain privileges via a complex attack that causes the handler to run in the LocalSystem context with user-specified code.... Read more

    • EPSS Score: %1.69
    • Published: Sep. 05, 2002
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2002-0873

    Vulnerability in l2tpd 0.67 allows remote attackers to overwrite the vendor field via a long value in an attribute/value pair, possibly via a buffer overflow.... Read more

    Affected Products : l2tpd
    • EPSS Score: %0.51
    • Published: Sep. 05, 2002
    • Modified: Apr. 03, 2025
Showing 20 of 291573 Results