Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 4.6

    MEDIUM
    CVE-2001-0941

    Buffer overflow in dbsnmp in Oracle 8.0.6 through 9.0.1 allows local users to execute arbitrary code via a long ORACLE_HOME environment variable.... Read more

    Affected Products : database_server
    • EPSS Score: %0.38
    • Published: Nov. 30, 2001
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2001-0912

    Packaging error for expect 8.3.3 in Mandrake Linux 8.1 causes expect to search for its libraries in the /home/snailtalk directory before other directories, which could allow a local user to gain root privileges.... Read more

    Affected Products : mandrake_linux
    • EPSS Score: %0.05
    • Published: Nov. 30, 2001
    • Modified: Apr. 03, 2025

  • 6.4

    MEDIUM
    CVE-2001-0938

    Directory traversal vulnerability in AspUpload 2.1, in certain configurations, allows remote attackers to upload and read arbitrary files, and list arbitrary directories, via a .. (dot dot) in the Filename parameter in (1) UploadScript11.asp or (2) Direct... Read more

    Affected Products : aspupload
    • EPSS Score: %1.17
    • Published: Nov. 30, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-0939

    Lotus Domino 5.08 and earlier allows remote attackers to cause a denial of service (crash) via a SunRPC NULL command to port 443.... Read more

    Affected Products : domino
    • EPSS Score: %0.91
    • Published: Nov. 30, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0937

    PGPMail.pl 1.31 allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) recipient or (2) pgpuserid parameters.... Read more

    Affected Products : pgpmail.pl
    • EPSS Score: %0.90
    • Published: Nov. 30, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-0896

    Inetd in OpenServer 5.0.5 allows remote attackers to cause a denial of service (crash) via a port scan, e.g. with nmap -PO.... Read more

    Affected Products : openserver
    • EPSS Score: %0.76
    • Published: Nov. 30, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0550

    wu-ftpd 2.6.1 allows remote attackers to execute arbitrary commands via a "~{" argument to commands such as CWD, which is not properly handled by the glob function (ftpglob).... Read more

    Affected Products : wu-ftpd ftpd-bsd
    • EPSS Score: %73.51
    • Published: Nov. 30, 2001
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-2001-0942

    dbsnmp in Oracle 8.1.6 and 8.1.7 uses the ORACLE_HOME environment variable to find and execute the dbsnmp program, which allows local users to execute arbitrary programs by pointing the ORACLE_HOME to an alternate directory that contains a malicious versi... Read more

    Affected Products : database_server
    • EPSS Score: %0.30
    • Published: Nov. 29, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0934

    Cooolsoft PowerFTP Server 2.03 allows remote attackers to obtain the physical path of the server root via the pwd command, which lists the full pathname.... Read more

    Affected Products : powerftp
    • EPSS Score: %3.32
    • Published: Nov. 28, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0935

    Vulnerability in wu-ftpd 2.6.0, and possibly earlier versions, which is unrelated to the ftpglob bug described in CVE-2001-0550.... Read more

    Affected Products : wu-ftpd
    • EPSS Score: %0.33
    • Published: Nov. 28, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0930

    Sendpage.pl allows remote attackers to execute arbitrary commands via a message containing shell metacharacters.... Read more

    Affected Products : sendpage.pl
    • EPSS Score: %0.90
    • Published: Nov. 28, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-0868

    Red Hat Stronghold 2.3 to 3.0 allows remote attackers to retrieve system information via an HTTP GET request to (1) stronghold-info or (2) stronghold-status.... Read more

    Affected Products : stronghold
    • EPSS Score: %1.13
    • Published: Nov. 28, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1449

    The default installation of Apache before 1.3.19 on Mandrake Linux 7.1 through 8.0 and Linux Corporate Server 1.0.1 allows remote attackers to list the directory index of arbitrary web directories.... Read more

    • EPSS Score: %5.09
    • Published: Nov. 28, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0932

    Buffer overflow in Cooolsoft PowerFTP Server 2.03 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long command.... Read more

    Affected Products : powerftp
    • EPSS Score: %7.80
    • Published: Nov. 28, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-1999-1514

    Buffer overflow in Celtech ExpressFS FTP server 2.x allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long USER command.... Read more

    Affected Products : expressfs
    • EPSS Score: %1.34
    • Published: Nov. 28, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-0926

    SSIFilter in Allaire JRun 3.1, 3.0 and 2.3.3 allows remote attackers to obtain source code for Java server pages (.jsp) and other files in the web root via an HTTP request for a non-existent SSI page, in which the request's body has an #include statement.... Read more

    Affected Products : jrun
    • EPSS Score: %3.22
    • Published: Nov. 28, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0928

    Buffer overflow in the permitted function of GNOME gtop daemon (libgtop_daemon) in libgtop 1.0.13 and earlier may allow remote attackers to execute arbitrary code via long authentication data.... Read more

    Affected Products : libgtop_daemon
    • EPSS Score: %4.88
    • Published: Nov. 28, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0929

    Cisco IOS Firewall Feature set, aka Context Based Access Control (CBAC) or Cisco Secure Integrated Software, for IOS 11.2P through 12.2T does not properly check the IP protocol type, which could allow remote attackers to bypass access control lists.... Read more

    Affected Products : ios
    • EPSS Score: %0.58
    • Published: Nov. 28, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0931

    Directory traversal vulnerability in Cooolsoft PowerFTP Server 2.03 allows attackers to list or read arbitrary files and directories via a .. (dot dot) in (1) LS or (2) GET.... Read more

    Affected Products : powerftp
    • EPSS Score: %78.85
    • Published: Nov. 28, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0933

    Cooolsoft PowerFTP Server 2.03 allows remote attackers to list the contents of arbitrary drives via a ls (LIST) command that includes the drive letter as an argument, e.g. "ls C:".... Read more

    Affected Products : powerftp
    • EPSS Score: %8.87
    • Published: Nov. 28, 2001
    • Modified: Apr. 03, 2025
Showing 20 of 291209 Results