Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 7.2

    HIGH
    CVE-2002-0631

    Unknown vulnerability in nveventd in NetVisualyzer on SGI IRIX 6.5 through 6.5.16 allows local users to write arbitrary files and gain root privileges.... Read more

    Affected Products : irix
    • EPSS Score: %0.15
    • Published: Jul. 03, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0548

    Anthill allows remote attackers to bypass authentication and file bug reports by directly accessing the postbug.php program instead of enterbug.php.... Read more

    Affected Products : anthill
    • EPSS Score: %0.61
    • Published: Jul. 03, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0371

    Buffer overflow in gopher client for Microsoft Internet Explorer 5.1 through 6.0, Proxy Server 2.0, or ISA Server 2000 allows remote attackers to execute arbitrary code via a gopher:// URL that redirects the user to a real or simulated gopher server that ... Read more

    • EPSS Score: %65.77
    • Published: Jul. 03, 2002
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2002-0359

    xfsmd for IRIX 6.5 through 6.5.16 uses weak authentication, which allows remote attackers to call dangerous RPC functions, including those that can mount or unmount xfs file systems, to gain root privileges.... Read more

    Affected Products : irix
    • EPSS Score: %1.38
    • Published: Jul. 03, 2002
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2002-0537

    The admin.html file in StepWeb Search Engine (SWS) 2.5 stores passwords in links to manager.pl, which allows remote attackers who can access the admin.html file to gain administrative privileges to SWS.... Read more

    Affected Products : sws
    • EPSS Score: %1.27
    • Published: Jul. 03, 2002
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2002-0544

    Aprelium Abyss Web Server (abyssws) before 1.0.3 stores the administrative console password in plaintext in the abyss.conf file, which allows local users with access to the file to gain privileges.... Read more

    Affected Products : abyss_web_server
    • EPSS Score: %0.13
    • Published: Jul. 03, 2002
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2002-0621

    Buffer overflow in the Office Web Components (OWC) package installer used by Microsoft Commerce Server 2000 allows remote attackers to cause the process to fail or run arbitrary code in the LocalSystem security context via certain input to the OWC package... Read more

    Affected Products : commerce_server
    • EPSS Score: %16.67
    • Published: Jul. 03, 2002
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2002-0574

    Memory leak in FreeBSD 4.5 and earlier allows remote attackers to cause a denial of service (memory exhaustion) via ICMP echo packets that trigger a bug in ip_output() in which the reference count for a routing table entry is not decremented, which preven... Read more

    Affected Products : freebsd
    • EPSS Score: %1.10
    • Published: Jul. 03, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0555

    IBM Informix Web DataBlade 4.12 unescapes user input even if an application has escaped it, which could allow remote attackers to execute SQL code in a web form even when the developer has attempted to escape it.... Read more

    Affected Products : informix_web_datablade
    • EPSS Score: %1.20
    • Published: Jul. 03, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0623

    Buffer overflow in AuthFilter ISAPI filter on Microsoft Commerce Server 2000 and 2002 allows remote attackers to execute arbitrary code via long authentication data, aka "New Variant of the ISAPI Filter Buffer Overrun".... Read more

    Affected Products : commerce_server
    • EPSS Score: %17.28
    • Published: Jul. 03, 2002
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2002-0542

    mail in OpenBSD 2.9 and 3.0 processes a tilde (~) escape character in a message even when it is not in interactive mode, which could allow local users to gain root privileges via calls to mail in cron.... Read more

    Affected Products : openbsd
    • EPSS Score: %0.36
    • Published: Jul. 03, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0559

    Buffer overflows in PL/SQL module 3.0.9.8.2 in Oracle 9i Application Server 1.0.2.x allow remote attackers to cause a denial of service or execute arbitrary code via (1) a long help page request without a dadname, which overflows the resulting HTTP Locati... Read more

    • EPSS Score: %26.41
    • Published: Jul. 03, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0573

    Format string vulnerability in RPC wall daemon (rpc.rwalld) for Solaris 2.5.1 through 8 allows remote attackers to execute arbitrary code via format strings in a message that is not properly provided to the syslog function when the wall command cannot be ... Read more

    Affected Products : solaris sunos
    • EPSS Score: %47.42
    • Published: Jul. 03, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0561

    The default configuration of the PL/SQL Gateway web administration interface in Oracle 9i Application Server 1.0.2.x uses null authentication, which allows remote attackers to gain privileges and modify DAD settings.... Read more

    • EPSS Score: %6.96
    • Published: Jul. 03, 2002
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2002-0572

    FreeBSD 4.5 and earlier, and possibly other BSD-based operating systems, allows local users to write to or read from restricted files by closing the file descriptors 0 (standard input), 1 (standard output), or 2 (standard error), which may then be reused ... Read more

    Affected Products : solaris sunos freebsd openbsd
    • EPSS Score: %0.28
    • Published: Jul. 03, 2002
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2002-0334

    xtell (xtelld) 1.91.1 and earlier, and 2.x before 2.7, allows local users to modify files via a symlink attack on the .xtell-log file.... Read more

    Affected Products : xtell
    • EPSS Score: %0.09
    • Published: Jun. 25, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0346

    Cross-site scripting vulnerability in Cobalt RAQ 4 allows remote attackers to execute arbitrary script as other Cobalt users via Javascript in a URL to (1) service.cgi or (2) alert.cgi.... Read more

    • EPSS Score: %9.44
    • Published: Jun. 25, 2002
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2002-0341

    GWWEB.EXE in GroupWise Web Access 5.5, and possibly other versions, allows remote attackers to determine the full pathname of the web server via an HTTP request with an invalid HTMLVER parameter.... Read more

    Affected Products : groupwise
    • EPSS Score: %0.17
    • Published: Jun. 25, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0329

    Cross-site scripting vulnerability in Snitz Forums 2000 3.3.03 and earlier allows remote attackers to execute arbitrary script as other Forums 2000 users via Javascript in an IMG tag.... Read more

    Affected Products : snitz_forums_2000
    • EPSS Score: %23.70
    • Published: Jun. 25, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0345

    Symantec Ghost 7.0 stores usernames and passwords in plaintext in the NGServer\params registry key, which could allow an attacker to gain privileges.... Read more

    Affected Products : norton_ghost
    • EPSS Score: %0.61
    • Published: Jun. 25, 2002
    • Modified: Apr. 03, 2025
Showing 20 of 291562 Results