Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 5.0

    MEDIUM
    CVE-2002-0203

    ttawebtop.cgi in Tarantella Enterprise 3.20 on SPARC Solaris and Linux, and 3.1x and 3.0x including 3.11.903, allows remote attackers to view directory contents via an empty pg parameter.... Read more

    Affected Products : tarantella_enterprise
    • EPSS Score: %0.71
    • Published: May. 16, 2002
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2002-0215

    Agora.cgi 3.2r through 4.0 while in debug mode allows remote attackers to determine the full pathname of the agora.cgi file by requesting a non-existent .html file, which leaks the pathname in an error message.... Read more

    Affected Products : agora.cgi
    • EPSS Score: %8.20
    • Published: May. 16, 2002
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2002-1592

    The ap_log_rerror function in Apache 2.0 through 2.035, when a CGI application encounters an error, sends error messages to the client that include the full path for the server, which allows remote attackers to obtain sensitive information.... Read more

    Affected Products : http_server
    • EPSS Score: %4.84
    • Published: May. 06, 2002
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-1999-1570

    Buffer overflow in sar for OpenServer 5.0.5 allows local users to gain root privileges via a long -o parameter.... Read more

    Affected Products : openserver
    • EPSS Score: %0.05
    • Published: May. 01, 2002
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-2002-1602

    Buffer overflow in the Braille module for GNU screen 3.9.11, when HAVE_BRAILLE is defined, allows local users to execute arbitrary code.... Read more

    Affected Products : screen
    • EPSS Score: %0.12
    • Published: Apr. 23, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0152

    Buffer overflow in various Microsoft applications for Macintosh allows remote attackers to cause a denial of service (crash) or execute arbitrary code by invoking the file:// directive with a large number of / characters, which affects Internet Explorer 5... Read more

    • EPSS Score: %22.55
    • Published: Apr. 22, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0170

    Zope 2.2.0 through 2.5.1 does not properly verify the access for objects with proxy roles, which could allow some users to access documents in violation of the intended configuration.... Read more

    Affected Products : zope
    • EPSS Score: %0.74
    • Published: Apr. 22, 2002
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2002-0064

    Funk Software Proxy Host 3.x is installed with insecure permissions for the registry and the file system.... Read more

    Affected Products : netrc funk_software_proxy
    • EPSS Score: %0.11
    • Published: Apr. 22, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0181

    Cross-site scripting vulnerability in status.php3 for IMP 2.2.8 and HORDE 1.2.7 allows remote attackers to execute arbitrary web script and steal cookies of other IMP/HORDE users via the script parameter.... Read more

    Affected Products : horde imp
    • EPSS Score: %1.50
    • Published: Apr. 22, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0074

    Cross-site scripting vulnerability in Help File search facility for Internet Information Server (IIS) 4.0, 5.0 and 5.1 allows remote attackers to embed scripts into another user's session.... Read more

    • EPSS Score: %41.78
    • Published: Apr. 22, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0168

    Vulnerability in Imlib before 1.9.13 allows attackers to cause a denial of service (crash) and possibly execute arbitrary code by manipulating arguments that are passed to malloc, which results in a heap corruption.... Read more

    Affected Products : imlib
    • EPSS Score: %0.94
    • Published: Apr. 22, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0148

    Cross-site scripting vulnerability in Internet Information Server (IIS) 4.0, 5.0 and 5.1 allows remote attackers to execute arbitrary script as other users via an HTTP error page.... Read more

    • EPSS Score: %68.62
    • Published: Apr. 22, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0177

    Buffer overflows in icecast 1.3.11 and earlier allows remote attackers to execute arbitrary code via a long HTTP GET request from an MP3 client.... Read more

    Affected Products : icecast
    • EPSS Score: %22.63
    • Published: Apr. 22, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0150

    Buffer overflow in Internet Information Server (IIS) 4.0, 5.0, and 5.1 allows remote attackers to spoof the safety check for HTTP headers and cause a denial of service or execute arbitrary code via HTTP header field values.... Read more

    • EPSS Score: %43.26
    • Published: Apr. 22, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0071

    Buffer overflow in the ism.dll ISAPI extension that implements HTR scripting in Internet Information Server (IIS) 4.0 and 5.0 allows attackers to cause a denial of service or execute arbitrary code via HTR requests with long variable names.... Read more

    • EPSS Score: %43.30
    • Published: Apr. 22, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0147

    Buffer overflow in the ASP data transfer mechanism in Internet Information Server (IIS) 4.0, 5.0, and 5.1 allows remote attackers to cause a denial of service or execute code, aka "Microsoft-discovered variant of Chunked Encoding buffer overrun."... Read more

    • EPSS Score: %34.35
    • Published: Apr. 22, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0153

    Internet Explorer 5.1 for Macintosh allows remote attackers to bypass security checks and invoke local AppleScripts within a specific HTML element, aka the "Local Applescript Invocation" vulnerability.... Read more

    Affected Products : ie
    • EPSS Score: %42.80
    • Published: Apr. 22, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0149

    Buffer overflow in ASP Server-Side Include Function in IIS 4.0, 5.0 and 5.1 allows remote attackers to cause a denial of service and possibly execute arbitrary code via long file names.... Read more

    • EPSS Score: %36.77
    • Published: Apr. 22, 2002
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2002-1621

    Buffer overflow in the file_comp function in rcp for IBM AIX 4.3.x and 5.1 allows remote attackers to execute arbitrary code.... Read more

    Affected Products : aix
    • EPSS Score: %26.37
    • Published: Apr. 22, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0037

    Lotus Domino Servers 5.x, 4.6x, and 4.5x allows attackers to bypass the intended Reader and Author access list for a document's object via a Notes API call (NSFDbReadObject) that directly accesses the object.... Read more

    Affected Products : lotus_domino_server
    • EPSS Score: %0.60
    • Published: Apr. 22, 2002
    • Modified: Apr. 03, 2025
Showing 20 of 291741 Results