Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 7.2

    HIGH
    CVE-2002-1613

    Buffer overflow in ps in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to gain privileges.... Read more

    Affected Products : hp-ux tru64
    • EPSS Score: %0.08
    • Published: Sep. 10, 2002
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2002-1614

    Buffer overflow in HP Tru64 UNIX allows local users to execute arbitrary code via a long argument to /usr/bin/at.... Read more

    Affected Products : hp-ux tru64
    • EPSS Score: %0.90
    • Published: Sep. 09, 2002
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2002-0852

    Buffer overflows in Cisco Virtual Private Network (VPN) Client 3.5.4 and earlier allows remote attackers to cause a denial of service via (1) an Internet Key Exchange (IKE) with a large Security Parameter Index (SPI) payload, or (2) an IKE packet with a l... Read more

    Affected Products : vpn_client
    • EPSS Score: %0.71
    • Published: Sep. 05, 2002
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2002-0851

    Format string vulnerability in ISDN Point to Point Protocol (PPP) daemon (ipppd) in the ISDN4Linux (i4l) package allows local users to gain root privileges via format strings in the device name command line argument, which is not properly handled in a cal... Read more

    Affected Products : isdn4linux
    • EPSS Score: %0.64
    • Published: Sep. 05, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0857

    Format string vulnerabilities in Oracle Listener Control utility (lsnrctl) for Oracle 9.2 and 9.0, 8.1, and 7.3.4, allow remote attackers to execute arbitrary code on the Oracle DBA system by placing format strings into certain entries in the listener.ora... Read more

    Affected Products : database_server oracle8i
    • EPSS Score: %2.31
    • Published: Sep. 05, 2002
    • Modified: Apr. 03, 2025

  • 5.5

    MEDIUM
    CVE-2002-0725

    NTFS file system in Windows NT 4.0 and Windows 2000 SP2 allows local attackers to hide file usage activities via a hard link to the target file, which causes the link to be recorded in the audit trail instead of the target file.... Read more

    Affected Products : windows_2000 windows_nt
    • EPSS Score: %0.66
    • Published: Sep. 05, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0872

    l2tpd 0.67 does not initialize the random number generator, which allows remote attackers to hijack sessions.... Read more

    Affected Products : l2tpd
    • EPSS Score: %0.72
    • Published: Sep. 05, 2002
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2002-0875

    Vulnerability in FAM 2.6.8, 2.6.6, and other versions allows unprivileged users to obtain the names of files whose access is restricted to the root group.... Read more

    Affected Products : enterprise_linux debian_linux irix fam
    • EPSS Score: %1.07
    • Published: Sep. 05, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0855

    Cross-site scripting vulnerability in Mailman before 2.0.12 allows remote attackers to execute script as other users via a subscriber's list subscription options in the (1) adminpw or (2) info parameters to the ml-name feature.... Read more

    Affected Products : mailman
    • EPSS Score: %41.04
    • Published: Sep. 05, 2002
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2002-0874

    Vulnerability in Interchange 4.8.6, 4.8.3, and other versions, when running in INET mode, allows remote attackers to read arbitrary files.... Read more

    Affected Products : interchange
    • EPSS Score: %4.30
    • Published: Sep. 05, 2002
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2002-0721

    Microsoft SQL Server 7.0 and 2000 installs with weak permissions for extended stored procedures that are associated with helper functions, which could allow unprivileged users, and possibly remote attackers, to run stored procedures with administrator pri... Read more

    Affected Products : sql_server sql_server data_engine
    • EPSS Score: %54.35
    • Published: Sep. 05, 2002
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2002-0720

    A handler routine for the Network Connection Manager (NCM) in Windows 2000 allows local users to gain privileges via a complex attack that causes the handler to run in the LocalSystem context with user-specified code.... Read more

    • EPSS Score: %1.69
    • Published: Sep. 05, 2002
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2002-0873

    Vulnerability in l2tpd 0.67 allows remote attackers to overwrite the vendor field via a long value in an attribute/value pair, possibly via a buffer overflow.... Read more

    Affected Products : l2tpd
    • EPSS Score: %0.51
    • Published: Sep. 05, 2002
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2002-0856

    SQL*NET listener for Oracle Net Oracle9i 9.0.x and 9.2 allows remote attackers to cause a denial of service (crash) via certain debug requests that are not properly handled by the debugging feature.... Read more

    Affected Products : database_server oracle9i
    • EPSS Score: %0.74
    • Published: Sep. 05, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0858

    catsnmp in Oracle 9i and 8i is installed with a dbsnmp user with a default dbsnmp password, which allows attackers to perform restricted database operations and possibly gain other privileges.... Read more

    Affected Products : oracle8i oracle9i
    • EPSS Score: %0.40
    • Published: Sep. 05, 2002
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2002-0854

    Buffer overflows in ISDN Point to Point Protocol (PPP) daemon (ipppd) in the i4l package on SuSE 7.3, 8.0, and possibly other operating systems, may allow local users to gain privileges.... Read more

    Affected Products : suse_linux
    • EPSS Score: %0.06
    • Published: Sep. 05, 2002
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2002-0871

    xinetd 2.3.4 leaks file descriptors for the signal pipe to services that are launched by xinetd, which could allow those services to cause a denial of service via the pipe.... Read more

    Affected Products : linux xinetd
    • EPSS Score: %0.11
    • Published: Sep. 05, 2002
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2002-0679

    Buffer overflow in Common Desktop Environment (CDE) ToolTalk RPC database server (rpc.ttdbserverd) allows remote attackers to execute arbitrary code via an argument to the _TT_CREATE_FILE procedure.... Read more

    • EPSS Score: %70.87
    • Published: Sep. 05, 2002
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2002-0853

    Cisco Virtual Private Network (VPN) Client 3.5.4 and earlier allows remote attackers to cause a denial of service (CPU consumption) via a packet with a zero-length payload.... Read more

    Affected Products : vpn_client
    • EPSS Score: %1.64
    • Published: Sep. 05, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0870

    The original patch for the Cisco Content Service Switch 11000 Series authentication bypass vulnerability (CVE-2001-0622) was incomplete, which still allows remote attackers to gain additional privileges by directly requesting the web management URL instea... Read more

    Affected Products : content_services_switch_11000 webns
    • EPSS Score: %0.46
    • Published: Sep. 05, 2002
    • Modified: Apr. 03, 2025
Showing 20 of 291625 Results