Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 7.5

    HIGH
    CVE-1999-1024

    ip_print procedure in Tcpdump 3.4a allows remote attackers to cause a denial of service via a packet with a zero length header, which causes an infinite loop and core dump when tcpdump prints the packet.... Read more

    Affected Products : tcpdump
    • EPSS Score: %4.35
    • Published: Nov. 28, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0927

    Format string vulnerability in the permitted function of GNOME libgtop_daemon in libgtop 1.0.12 and earlier allows remote attackers to execute arbitrary code via an argument that contains format specifiers that are passed into the (1) syslog_message and (... Read more

    Affected Products : libgtop_daemon
    • EPSS Score: %2.05
    • Published: Nov. 27, 2001
    • Modified: Apr. 03, 2025

  • 6.2

    MEDIUM
    CVE-2001-0920

    Format string vulnerability in auto nice daemon (AND) 1.0.4 and earlier allows a local user to possibly execute arbitrary code via a process name containing a format string.... Read more

    Affected Products : autonice_daemon
    • EPSS Score: %0.05
    • Published: Nov. 26, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0875

    Internet Explorer 5.5 and 6.0 allows remote attackers to cause the File Download dialogue box to misrepresent the name of the file in the dialogue in a way that could fool users into thinking that the file type is safe to download.... Read more

    Affected Products : internet_explorer
    • EPSS Score: %22.71
    • Published: Nov. 26, 2001
    • Modified: Apr. 03, 2025

  • 5.1

    MEDIUM
    CVE-2001-0919

    Internet Explorer 5.50.4134.0100 on Windows ME with "Prompt to allow cookies to be stored on your machine" enabled does not warn a user when a cookie is set using Javascript.... Read more

    Affected Products : internet_explorer
    • EPSS Score: %3.29
    • Published: Nov. 26, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0922

    ndcgi.exe in Netdynamics 4.x through 5.x, and possibly earlier versions, allows remote attackers to steal session IDs and hijack user sessions by reading the SPIDERSESSION and uniqueValue variables from the login field, then using those variables after th... Read more

    Affected Products : netdynamics
    • EPSS Score: %0.72
    • Published: Nov. 26, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1350

    Cross-site scripting vulnerability in namazu.cgi for Namazu 2.0.7 and earlier allows remote attackers to execute arbitrary Javascript as other web users via the lang parameter.... Read more

    Affected Products : namazu
    • EPSS Score: %0.80
    • Published: Nov. 25, 2001
    • Modified: Apr. 03, 2025

  • 5.1

    MEDIUM
    CVE-2001-0918

    Vulnerabilities in CGI scripts in susehelp in SuSE 7.2 and 7.3 allow remote attackers to execute arbitrary commands by not opening files securely.... Read more

    Affected Products : suse_linux
    • EPSS Score: %0.84
    • Published: Nov. 22, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0913

    Format string vulnerability in Network Solutions Rwhoisd 1.5.7.2 and earlier, when using syslog, allows remote attackers to corrupt memory and possibly execute arbitrary code via a rwhois request that contains format specifiers.... Read more

    Affected Products : rwhoisd
    • EPSS Score: %1.84
    • Published: Nov. 22, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-0924

    Directory traversal vulnerability in ifx CGI program in Informix Web DataBlade allows remote attackers to read arbitrary files via a .. (dot dot) in the LO parameter.... Read more

    Affected Products : informix_web_datablade
    • EPSS Score: %11.13
    • Published: Nov. 22, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-0917

    Jakarta Tomcat 4.0.1 allows remote attackers to reveal physical path information by requesting a long URL with a .JSP extension.... Read more

    Affected Products : tomcat
    • EPSS Score: %2.96
    • Published: Nov. 22, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0910

    Legato Networker before 6.1 allows remote attackers to bypass access restrictions and gain privileges on the Networker interface by spoofing the admin server name and IP address and connecting to Networker from an IP address whose hostname can not be dete... Read more

    Affected Products : networker
    • EPSS Score: %0.35
    • Published: Nov. 21, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0911

    PHP-Nuke 5.1 stores user and administrator passwords in a base-64 encoded cookie, which could allow remote attackers to gain privileges by stealing or sniffing the cookie and decoding it.... Read more

    Affected Products : php-nuke postnuke
    • EPSS Score: %0.04
    • Published: Nov. 21, 2001
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2001-0921

    Netscape 4.79 and earlier for MacOS allows an attacker with access to the browser to obtain passwords from form fields by printing the document into which the password has been typed, which is printed in cleartext.... Read more

    Affected Products : communicator
    • EPSS Score: %0.12
    • Published: Nov. 21, 2001
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2001-0916

    Buffer overflow in Berkeley parallel make (pmake) 2.1.33 and earlier allows a local user to gain root privileges via a long check argument of a shell definition.... Read more

    Affected Products : pmake
    • EPSS Score: %0.15
    • Published: Nov. 21, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0909

    Buffer overflow in helpctr.exe program in Microsoft Help Center for Windows XP allows remote attackers to execute arbitrary code via a long hcp: URL.... Read more

    Affected Products : windows_xp
    • EPSS Score: %20.75
    • Published: Nov. 21, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0908

    CITRIX Metaframe 1.8 logs the Client Address (IP address) that is provided by the client instead of obtaining it from the packet headers, which allows clients to spoof their public IP address, e.g. through Network Address Translation (NAT).... Read more

    Affected Products : metaframe
    • EPSS Score: %0.64
    • Published: Nov. 21, 2001
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2001-0914

    Linux kernel before 2.4.11pre3 in multiple Linux distributions allows local users to cause a denial of service (crash) by starting the core vmlinux kernel, possibly related to poor error checking during ELF loading.... Read more

    Affected Products : linux_kernel suse_linux
    • EPSS Score: %0.06
    • Published: Nov. 21, 2001
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2001-0915

    Format string vulnerability in Berkeley parallel make (pmake) 2.1.33 and earlier allows a local user to gain root privileges via format specifiers in the check argument of a shell definition.... Read more

    Affected Products : pmake
    • EPSS Score: %0.15
    • Published: Nov. 21, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-0904

    Internet Explorer 5.5 and 6 with the Q312461 (MS01-055) patch modifies the HTTP_USER_AGENT (UserAgent) information that indicates that the patch has been installed, which could allow remote malicious web sites to more easily identify and exploit vulnerabl... Read more

    Affected Products : internet_explorer
    • EPSS Score: %17.86
    • Published: Nov. 20, 2001
    • Modified: Apr. 03, 2025
Showing 20 of 291209 Results