Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 4.6

    MEDIUM
    CVE-2002-0113

    EMC NetWorker (formerly Legato NetWorker) before 7.0 stores log files in the /nsr/logs/ directory with world-readable permissions, which allows local users to read sensitive information and possibly gain privileges. NOTE: this was originally reported for... Read more

    Affected Products : networker
    • EPSS Score: %0.05
    • Published: Mar. 25, 2002
    • Modified: Apr. 03, 2025

  • 6.4

    MEDIUM
    CVE-2002-0109

    Linksys EtherFast BEFN2PS4, BEFSR41, and BEFSR81 Routers, and possibly other products, allow remote attackers to gain sensitive information and cause a denial of service via an SNMP query for the default community string "public," which causes the router ... Read more

    Affected Products : befsr41 befn2ps4 befsr81
    • EPSS Score: %0.76
    • Published: Mar. 25, 2002
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2002-0102

    Oracle9iAS Web Cache 2.0.0.x allows remote attackers to cause a denial of service via (1) a request to TCP ports 1100, 4000, 4001, and 4002 with a large number of null characters, and (2) a request to TCP port 4000 with a large number of "." characters.... Read more

    • EPSS Score: %0.56
    • Published: Mar. 25, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0098

    Buffer overflow in index.cgi administration interface for Boozt! Standard 0.9.8 allows local users to execute arbitrary code via a long name field when creating a new banner.... Read more

    Affected Products : boozt_standard
    • EPSS Score: %2.21
    • Published: Mar. 25, 2002
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-1210

    Directory traversal vulnerability in source.jsp of Apache Tomcat before 3.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the argument to source.jsp.... Read more

    Affected Products : tomcat
    • EPSS Score: %3.92
    • Published: Mar. 22, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0061

    Apache for Win32 before 1.3.24, and 2.0.x before 2.0.34-beta, allows remote attackers to execute arbitrary commands via shell metacharacters (a | pipe character) provided as arguments to batch (.bat) or .cmd scripts, which are sent unfiltered to the shell... Read more

    Affected Products : http_server
    • EPSS Score: %83.65
    • Published: Mar. 21, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0076

    Java Runtime Environment (JRE) Bytecode Verifier allows remote attackers to escape the Java sandbox and execute commands via an applet containing an illegal cast operation, as seen in (1) Microsoft VM build 3802 and earlier as used in Internet Explorer 4.... Read more

    Affected Products : jre sdk jdk virtual_machine java_jre-jdk
    • EPSS Score: %1.08
    • Published: Mar. 19, 2002
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2002-0092

    CVS before 1.10.8 does not properly initialize a global variable, which allows remote attackers to cause a denial of service (server crash) via the diff capability.... Read more

    Affected Products : cvs
    • EPSS Score: %1.27
    • Published: Mar. 15, 2002
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2002-0058

    Vulnerability in Java Runtime Environment (JRE) allows remote malicious web sites to hijack or sniff a web client's sessions, when an HTTP proxy is being used, via a Java applet that redirects the session to another server, as seen in (1) Netscape 6.0 thr... Read more

    Affected Products : jre sdk jdk virtual_machine
    • EPSS Score: %2.81
    • Published: Mar. 15, 2002
    • Modified: Apr. 03, 2025

  • 7.6

    HIGH
    CVE-2002-0070

    Buffer overflow in Windows Shell (used as the Windows Desktop) allows local and possibly remote attackers to execute arbitrary code via a custom URL handler that has not been removed for an application that has been improperly uninstalled.... Read more

    • EPSS Score: %26.11
    • Published: Mar. 15, 2002
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2002-0090

    Buffer overflow in Low BandWidth X proxy (lbxproxy) in Solaris 8 allows local users to execute arbitrary code via a long display command line option.... Read more

    Affected Products : solaris
    • EPSS Score: %0.14
    • Published: Mar. 15, 2002
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2002-0089

    Buffer overflow in admintool in Solaris 2.5 through 8 allows local users to gain root privileges via long arguments to (1) the -d command line option, or (2) the PRODVERS argument in the .cdtoc file.... Read more

    Affected Products : solaris sunos
    • EPSS Score: %0.08
    • Published: Mar. 15, 2002
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2002-0088

    Buffer overflow in admintool in Solaris 2.6, 7, and 8 allows local users to gain root privileges via a long media installation path.... Read more

    Affected Products : solaris sunos
    • EPSS Score: %0.05
    • Published: Mar. 15, 2002
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2002-0087

    bindsock in Lotus Domino 5.07 on Solaris allows local users to create arbitrary files via a symlink attack on temporary files.... Read more

    Affected Products : lotus_domino domino
    • EPSS Score: %0.12
    • Published: Mar. 15, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0091

    Multiple CGI scripts in CIDER SHADOW 1.5 and 1.6 allows remote attackers to execute arbitrary commands via certain form fields.... Read more

    Affected Products : cider_shadow
    • EPSS Score: %1.01
    • Published: Mar. 15, 2002
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2002-0085

    cachefsd in Solaris 2.6, 7, and 8 allows remote attackers to cause a denial of service (crash) via an invalid procedure call in an RPC request.... Read more

    Affected Products : solaris sunos
    • EPSS Score: %1.27
    • Published: Mar. 15, 2002
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2002-0086

    Buffer overflow in bindsock in Lotus Domino 5.0.4 and 5.0.7 on Linux allows local users to gain root privileges via a long (1) Notes_ExecDirectory or (2) PATH environment variable.... Read more

    Affected Products : lotus_domino
    • EPSS Score: %0.07
    • Published: Mar. 15, 2002
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2002-0083

    Off-by-one error in the channel code of OpenSSH 2.0 through 3.0.2 allows local users or remote malicious servers to gain privileges.... Read more

    • EPSS Score: %4.08
    • Published: Mar. 15, 2002
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2002-0084

    Buffer overflow in the fscache_setup function of cachefsd in Solaris 2.6, 7, and 8 allows local users to gain root privileges via a long mount argument.... Read more

    Affected Products : solaris sunos
    • EPSS Score: %3.23
    • Published: Mar. 15, 2002
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2002-0080

    rsync, when running in daemon mode, does not properly call setgroups before dropping privileges, which could provide supplemental group privileges to local users, who could then read certain files that would otherwise be disallowed.... Read more

    Affected Products : rsync linux
    • EPSS Score: %0.79
    • Published: Mar. 15, 2002
    • Modified: Apr. 03, 2025
Showing 20 of 291898 Results