Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 7.5

    HIGH
    CVE-2002-0082

    The dbm and shm session cache code in mod_ssl before 2.8.7-1.3.23, and Apache-SSL before 1.3.22+1.46, does not properly initialize memory using the i2d_SSL_SESSION function, which allows remote attackers to use a buffer overflow to execute arbitrary code ... Read more

    Affected Products : apache-ssl mod_ssl
    • EPSS Score: %2.51
    • Published: Mar. 15, 2002
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2002-0089

    Buffer overflow in admintool in Solaris 2.5 through 8 allows local users to gain root privileges via long arguments to (1) the -d command line option, or (2) the PRODVERS argument in the .cdtoc file.... Read more

    Affected Products : solaris sunos
    • EPSS Score: %0.08
    • Published: Mar. 15, 2002
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2002-0084

    Buffer overflow in the fscache_setup function of cachefsd in Solaris 2.6, 7, and 8 allows local users to gain root privileges via a long mount argument.... Read more

    Affected Products : solaris sunos
    • EPSS Score: %3.23
    • Published: Mar. 15, 2002
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2002-0083

    Off-by-one error in the channel code of OpenSSH 2.0 through 3.0.2 allows local users or remote malicious servers to gain privileges.... Read more

    • EPSS Score: %4.08
    • Published: Mar. 15, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0081

    Buffer overflows in (1) php_mime_split in PHP 4.1.0, 4.1.1, and 4.0.6 and earlier, and (2) php3_mime_split in PHP 3.0.x allows remote attackers to execute arbitrary code via a multipart/form-data HTTP POST request when file_uploads is enabled.... Read more

    Affected Products : php
    • EPSS Score: %44.25
    • Published: Mar. 08, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0060

    IRC connection tracking helper module in the netfilter subsystem for Linux 2.4.18-pre9 and earlier does not properly set the mask for conntrack expectations for incoming DCC connections, which could allow remote attackers to bypass intended firewall restr... Read more

    Affected Products : linux_kernel linux
    • EPSS Score: %3.33
    • Published: Mar. 08, 2002
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2002-1619

    Buffer overflow in the FC client for IBM AIX 4.3.x allows remote attackers to cause a denial of service (crash and core dump).... Read more

    Affected Products : aix
    • EPSS Score: %1.41
    • Published: Mar. 08, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0022

    Buffer overflow in the implementation of an HTML directive in mshtml.dll in Internet Explorer 5.5 and 6.0 allows remote attackers to execute arbitrary code via a web page that specifies embedded ActiveX controls in a way that causes 2 Unicode strings to b... Read more

    Affected Products : internet_explorer
    • EPSS Score: %35.25
    • Published: Mar. 08, 2002
    • Modified: Apr. 03, 2025

  • 2.6

    LOW
    CVE-2002-0069

    Memory leak in SNMP in Squid 2.4 STABLE3 and earlier allows remote attackers to cause a denial of service.... Read more

    Affected Products : squid linux squid
    • EPSS Score: %1.36
    • Published: Mar. 08, 2002
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2002-0052

    Internet Explorer 6.0 and earlier does not properly handle VBScript in certain domain security checks, which allows remote attackers to read arbitrary files.... Read more

    Affected Products : internet_explorer
    • EPSS Score: %34.38
    • Published: Mar. 08, 2002
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2002-0062

    Buffer overflow in ncurses 5.0, and the ncurses4 compatibility package as used in Red Hat Linux, allows local users to gain privileges, related to "routines for moving the physical cursor and scrolling."... Read more

    • EPSS Score: %0.20
    • Published: Mar. 08, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0020

    Buffer overflow in telnet server in Windows 2000 and Interix 2.2 allows remote attackers to execute arbitrary code via malformed protocol options.... Read more

    Affected Products : windows_2000 interix
    • EPSS Score: %19.52
    • Published: Mar. 08, 2002
    • Modified: Apr. 03, 2025

  • 6.4

    MEDIUM
    CVE-2002-0049

    Microsoft Exchange Server 2000 System Attendant gives "Everyone" group privileges to the WinReg key, which could allow remote attackers to read or modify registry keys.... Read more

    Affected Products : exchange_server
    • EPSS Score: %11.34
    • Published: Mar. 08, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0067

    Squid 2.4 STABLE3 and earlier does not properly disable HTCP, even when "htcp_port 0" is specified in squid.conf, which could allow remote attackers to bypass intended access restrictions.... Read more

    Affected Products : squid linux squid
    • EPSS Score: %0.22
    • Published: Mar. 08, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0068

    Squid 2.4 STABLE3 and earlier allows remote attackers to cause a denial of service (core dump) and possibly execute arbitrary code with an ftp:// URL with a larger number of special characters, which exceed the buffer when Squid URL-escapes the characters... Read more

    Affected Products : squid linux squid
    • EPSS Score: %5.56
    • Published: Mar. 08, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0053

    Buffer overflow in SNMP agent service in Windows 95/98/98SE, Windows NT 4.0, Windows 2000, and Windows XP allows remote attackers to cause a denial of service or execute arbitrary code via a malformed management request. NOTE: this candidate may be split... Read more

    • EPSS Score: %33.40
    • Published: Mar. 08, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0063

    Buffer overflow in ippRead function of CUPS before 1.1.14 may allow attackers to execute arbitrary code via long attribute names or language values.... Read more

    Affected Products : cups
    • EPSS Score: %1.94
    • Published: Mar. 08, 2002
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2002-0055

    SMTP service in Microsoft Windows 2000, Windows XP Professional, and Exchange 2000 allows remote attackers to cause a denial of service via a command with a malformed data transfer (BDAT) request.... Read more

    • EPSS Score: %33.31
    • Published: Mar. 08, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0054

    SMTP service in (1) Microsoft Windows 2000 and (2) Internet Mail Connector (IMC) in Exchange Server 5.5 does not properly handle responses to NTLM authentication, which allows remote attackers to perform mail relaying via an SMTP AUTH command using null s... Read more

    Affected Products : exchange_server windows_2000
    • EPSS Score: %8.24
    • Published: Mar. 08, 2002
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2002-0057

    XMLHTTP control in Microsoft XML Core Services 2.6 and later does not properly handle IE Security Zone settings, which allows remote attackers to read arbitrary files by specifying a local file as an XML Data Source.... Read more

    • EPSS Score: %41.76
    • Published: Mar. 08, 2002
    • Modified: Apr. 03, 2025
Showing 20 of 291659 Results