Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 4.6

    MEDIUM
    CVE-2001-0586

    TrendMicro ScanMail for Exchange 3.5 Evaluation allows a local attacker to recover the administrative credentials for ScanMail via a combination of unprotected registry keys and weakly encrypted passwords.... Read more

    Affected Products : scanmail_exchange
    • EPSS Score: %0.07
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-0571

    Directory traversal vulnerability in the web server for (1) Elron Internet Manager (IM) Message Inspector and (2) Anti-Virus before 3.0.4 allows remote attackers to read arbitrary files via a .. (dot dot) in the requested URL.... Read more

    Affected Products : im_anti_virus im_message_inspector
    • EPSS Score: %7.21
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-2001-0582

    Ben Spink CrushFTP FTP Server 2.1.6 and earlier allows a local attacker to access arbitrary files via a '..' (dot dot) attack, or variations, in (1) GET, (2) CD, (3) NLST, (4) SIZE, (5) RETR.... Read more

    Affected Products : crushftp_ftp_server
    • EPSS Score: %0.08
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-2001-0578

    Buffer overflow in lpforms in SCO OpenServer 5.0-5.0.6 can allow a local attacker to gain additional privileges via a long first argument to the lpforms command.... Read more

    Affected Products : openserver
    • EPSS Score: %0.26
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2001-0568

    Digital Creations Zope 2.3.1 b1 and earlier allows a local attacker (Zope user) with through-the-web scripting capabilities to alter ZClasses class attributes.... Read more

    Affected Products : zope
    • EPSS Score: %0.11
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-1139

    Directory traversal vulnerability in ASCII NT WinWrapper Professional allows remote attackers to read arbitrary files via a .. (dot dot) in the server request.... Read more

    Affected Products : winwrapper_professional
    • EPSS Score: %5.22
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-0606

    Vulnerability in iPlanet Web Server 4.X in HP-UX 11.04 (VVOS) with VirtualVault A.04.00 allows a remote attacker to create a denial of service via the HTTPS service.... Read more

    Affected Products : virtualvault iplanet_web_server
    • EPSS Score: %0.46
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0617

    Allied Telesyn AT-AR220e cable/DSL router firmware 1.08a RC14 with the portmapper and the 'Virtual Server' enabled can allow a remote attacker to gain access to mapped services even though the single portmappings may be disabled.... Read more

    Affected Products : at-ar220e
    • EPSS Score: %0.64
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0608

    HP architected interface facility (AIF) as includes with MPE/iX 5.5 through 6.5 running on a HP3000 allows an attacker to gain additional privileges and gain access to databases via the AIF - AIFCHANGELOGON program.... Read more

    Affected Products : mpe
    • EPSS Score: %0.68
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-2001-0575

    Buffer overflow in lpshut in SCO OpenServer 5.0.6 can allow a local attacker to gain additional privileges via a long first argument to lpshut.... Read more

    Affected Products : openserver
    • EPSS Score: %0.26
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-0583

    Alt-N Technologies MDaemon 3.5.4 allows a remote attacker to create a denial of service via the URL request of a MS-DOS device (such as GET /aux) to (1) the Worldclient service at port 3000, or (2) the Webconfig service at port 3001.... Read more

    Affected Products : mdaemon
    • EPSS Score: %0.65
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-0585

    Gordano NTMail 6.0.3c allows a remote attacker to create a denial of service via a long (>= 255 characters) URL request to port 8000 or port 9000.... Read more

    Affected Products : ntmail
    • EPSS Score: %0.74
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-2001-0607

    asecure as included with HP-UX 10.01 through 11.00 can allow a local attacker to create a denial of service and gain additional privileges via unsafe permissions on the asecure program, a different vulnerability than CVE-2000-0083.... Read more

    Affected Products : hp-ux
    • EPSS Score: %0.06
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-1140

    BadBlue Personal Edition v1.02 beta allows remote attackers to read source code for executable programs by appending a %00 (null byte) to the request.... Read more

    Affected Products : badblue
    • EPSS Score: %1.00
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-1150

    Vulnerability in cgiWebupdate.exe in Trend Micro OfficeScan Corporate Edition (aka Virus Buster) 3.5.2 through 3.5.4 allows remote attackers to read arbitrary files.... Read more

    Affected Products : officescan virus_buster
    • EPSS Score: %0.83
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0591

    Directory traversal vulnerability in Oracle JSP 1.0.x through 1.1.1 and Oracle 8.1.7 iAS Release 1.0.2 can allow a remote attacker to read or execute arbitrary .jsp files via a '..' (dot dot) attack.... Read more

    Affected Products : application_server jsp
    • EPSS Score: %0.92
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0357

    FormMail.pl in FormMail 1.6 and earlier allows a remote attacker to send anonymous email (spam) by modifying the recipient and message parameters.... Read more

    Affected Products : formmail
    • EPSS Score: %0.64
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0579

    lpadmin in SCO OpenServer 5.0.6 can allow a local attacker to gain additional privileges via a buffer overflow attack in the first argument to the command.... Read more

    Affected Products : openserver
    • EPSS Score: %2.13
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-0630

    Directory traversal vulnerability in MIMAnet viewsrc.cgi 2.0 allows a remote attacker to read arbitrary files via a '..' (dot dot) attack in the 'loc' variable.... Read more

    Affected Products : source_viewer
    • EPSS Score: %6.18
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-1294

    Buffer overflow in A-V Tronics Inetserv 3.2.1 and earlier allows remote attackers to cause a denial of service (crash) in the Webmail interface via a long username and password.... Read more

    Affected Products : inetserv
    • EPSS Score: %0.71
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025
Showing 20 of 291162 Results