Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 5.0

    MEDIUM
    CVE-2001-1168

    Directory traversal vulnerability in index.php in PhpMyExplorer before 1.2.1 allows remote attackers to read arbitrary files via a ..%2F (modified dot dot) in the chemin parameter.... Read more

    • EPSS Score: %0.49
    • Published: Aug. 29, 2001
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2001-1153

    lpsystem in OpenUnix 8.0.0 allows local users to cause a denial of service and possibly execute arbitrary code via a long command line argument.... Read more

    Affected Products : openunix
    • EPSS Score: %0.05
    • Published: Aug. 28, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1444

    The Kerberos Telnet protocol, as implemented by KTH Kerberos IV and Kerberos V (Heimdal), does not encrypt authentication and encryption options sent from the server, which allows remote attackers to downgrade authentication and encryption mechanisms via ... Read more

    Affected Products : kth_kerberos
    • EPSS Score: %0.68
    • Published: Aug. 27, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-1443

    KTH Kerberos IV and Kerberos V (Heimdal) for Telnet clients do not encrypt connections if the server does not support the requested encryption, which allows remote attackers to read communications via a man-in-the-middle attack.... Read more

    Affected Products : kth_kerberos
    • EPSS Score: %0.70
    • Published: Aug. 27, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1455

    Netegrity SiteMinder 3.6 through 4.5.1 allows remote attackers to bypass filtering via URLs containing Unicode characters.... Read more

    Affected Products : siteminder
    • EPSS Score: %0.76
    • Published: Aug. 24, 2001
    • Modified: Apr. 03, 2025

  • 9.8

    CRITICAL
    CVE-2001-1155

    TCP Wrappers (tcp_wrappers) in FreeBSD 4.1.1 through 4.3 with the PARANOID ACL option enabled does not properly check the result of a reverse DNS lookup, which could allow remote attackers to bypass intended access restrictions via DNS spoofing.... Read more

    Affected Products : freebsd
    • EPSS Score: %0.47
    • Published: Aug. 23, 2001
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2001-1091

    The (1) dump and (2) dump_lfs commands in NetBSD 1.4.x through 1.5.1 do not properly drop privileges, which could allow local users to gain privileges via the RCMD_CMD environment variable.... Read more

    Affected Products : netbsd
    • EPSS Score: %0.06
    • Published: Aug. 23, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-1150

    Vulnerability in cgiWebupdate.exe in Trend Micro OfficeScan Corporate Edition (aka Virus Buster) 3.5.2 through 3.5.4 allows remote attackers to read arbitrary files.... Read more

    Affected Products : officescan virus_buster
    • EPSS Score: %0.83
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-0593

    Anaconda Partners Clipper 3.3 and earlier allows a remote attacker to read arbitrary files via a '..' (dot dot) attack in the template parameter.... Read more

    Affected Products : clipper
    • EPSS Score: %6.96
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0572

    The SSH protocols 1 and 2 (aka SSH-2) as implemented in OpenSSH and other packages have various weaknesses which can allow a remote attacker to obtain the following information via sniffing: (1) password lengths or ranges of lengths, which simplifies brut... Read more

    Affected Products : openssh ssh
    • EPSS Score: %15.04
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0605

    Headlight Software MyGetright prior to 1.0b allows a remote attacker to upload and/or overwrite arbitrary files via a malicious .dld (skins-data) file which contains long strings of random data.... Read more

    Affected Products : mygetright
    • EPSS Score: %0.64
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-0585

    Gordano NTMail 6.0.3c allows a remote attacker to create a denial of service via a long (>= 255 characters) URL request to port 8000 or port 9000.... Read more

    Affected Products : ntmail
    • EPSS Score: %0.74
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-1140

    BadBlue Personal Edition v1.02 beta allows remote attackers to read source code for executable programs by appending a %00 (null byte) to the request.... Read more

    Affected Products : badblue
    • EPSS Score: %1.00
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-2001-0607

    asecure as included with HP-UX 10.01 through 11.00 can allow a local attacker to create a denial of service and gain additional privileges via unsafe permissions on the asecure program, a different vulnerability than CVE-2000-0083.... Read more

    Affected Products : hp-ux
    • EPSS Score: %0.06
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-0583

    Alt-N Technologies MDaemon 3.5.4 allows a remote attacker to create a denial of service via the URL request of a MS-DOS device (such as GET /aux) to (1) the Worldclient service at port 3000, or (2) the Webconfig service at port 3001.... Read more

    Affected Products : mdaemon
    • EPSS Score: %0.65
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-2001-0575

    Buffer overflow in lpshut in SCO OpenServer 5.0.6 can allow a local attacker to gain additional privileges via a long first argument to lpshut.... Read more

    Affected Products : openserver
    • EPSS Score: %0.26
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-1294

    Buffer overflow in A-V Tronics Inetserv 3.2.1 and earlier allows remote attackers to cause a denial of service (crash) in the Webmail interface via a long username and password.... Read more

    Affected Products : inetserv
    • EPSS Score: %0.71
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-0630

    Directory traversal vulnerability in MIMAnet viewsrc.cgi 2.0 allows a remote attacker to read arbitrary files via a '..' (dot dot) attack in the 'loc' variable.... Read more

    Affected Products : source_viewer
    • EPSS Score: %6.18
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2001-0556

    The Nirvana Editor (NEdit) 5.1.1 and earlier allows a local attacker to overwrite other users' files via a symlink attack on (1) backup files or (2) temporary files used when nedit prints a file or portions of a file.... Read more

    Affected Products : nedit
    • EPSS Score: %0.05
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-2001-0560

    Buffer overflow in Vixie cron 3.0.1-56 and earlier could allow a local attacker to gain additional privileges via a long username (> 20 characters).... Read more

    Affected Products : vixie_cron
    • EPSS Score: %0.22
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025
Showing 20 of 291153 Results