Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 7.5

    HIGH
    CVE-2001-0632

    Sun Chili!Soft 3.5.2 on Linux and 3.6 on AIX creates a default admin username and password in the default installation, which can allow a remote attacker to gain additional privileges.... Read more

    Affected Products : chilisoft
    • EPSS Score: %0.55
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-2001-0588

    sendmail 8.9.3, as included with the MMDF 2.43.3b package in SCO OpenServer 5.0.6, can allow a local attacker to gain additional privileges via a buffer overflow in the first argument to the command.... Read more

    Affected Products : openserver
    • EPSS Score: %0.10
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-0581

    Spytech Spynet Chat Server 6.5 allows a remote attacker to create a denial of service (crash) via a large number of connections to port 6387.... Read more

    Affected Products : spynet_chat
    • EPSS Score: %4.72
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-1139

    Directory traversal vulnerability in ASCII NT WinWrapper Professional allows remote attackers to read arbitrary files via a .. (dot dot) in the server request.... Read more

    Affected Products : winwrapper_professional
    • EPSS Score: %5.22
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0617

    Allied Telesyn AT-AR220e cable/DSL router firmware 1.08a RC14 with the portmapper and the 'Virtual Server' enabled can allow a remote attacker to gain access to mapped services even though the single portmappings may be disabled.... Read more

    Affected Products : at-ar220e
    • EPSS Score: %0.64
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-0606

    Vulnerability in iPlanet Web Server 4.X in HP-UX 11.04 (VVOS) with VirtualVault A.04.00 allows a remote attacker to create a denial of service via the HTTPS service.... Read more

    Affected Products : virtualvault iplanet_web_server
    • EPSS Score: %0.46
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0608

    HP architected interface facility (AIF) as includes with MPE/iX 5.5 through 6.5 running on a HP3000 allows an attacker to gain additional privileges and gain access to databases via the AIF - AIFCHANGELOGON program.... Read more

    Affected Products : mpe
    • EPSS Score: %0.68
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-2001-0582

    Ben Spink CrushFTP FTP Server 2.1.6 and earlier allows a local attacker to access arbitrary files via a '..' (dot dot) attack, or variations, in (1) GET, (2) CD, (3) NLST, (4) SIZE, (5) RETR.... Read more

    Affected Products : crushftp_ftp_server
    • EPSS Score: %0.08
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-2001-0560

    Buffer overflow in Vixie cron 3.0.1-56 and earlier could allow a local attacker to gain additional privileges via a long username (> 20 characters).... Read more

    Affected Products : vixie_cron
    • EPSS Score: %0.22
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2001-0569

    Digital Creations Zope 2.3.1 b1 and earlier contains a problem in the method return values related to the classes (1) ObjectManager, (2) PropertyManager, and (3) PropertySheet.... Read more

    Affected Products : zope
    • EPSS Score: %0.13
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-0613

    Omnicron Technologies OmniHTTPD Professional 2.08 and earlier allows a remote attacker to create a denial of service via a long POST URL request.... Read more

    Affected Products : omnihttpd
    • EPSS Score: %0.89
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2001-0556

    The Nirvana Editor (NEdit) 5.1.1 and earlier allows a local attacker to overwrite other users' files via a symlink attack on (1) backup files or (2) temporary files used when nedit prints a file or portions of a file.... Read more

    Affected Products : nedit
    • EPSS Score: %0.05
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2001-0584

    IMAP server in Alt-N Technologies MDaemon 3.5.6 allows a local user to cause a denial of service (hang) via long (1) SELECT or (2) EXAMINE commands.... Read more

    Affected Products : mdaemon
    • EPSS Score: %0.23
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2001-0568

    Digital Creations Zope 2.3.1 b1 and earlier allows a local attacker (Zope user) with through-the-web scripting capabilities to alter ZClasses class attributes.... Read more

    Affected Products : zope
    • EPSS Score: %0.11
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0572

    The SSH protocols 1 and 2 (aka SSH-2) as implemented in OpenSSH and other packages have various weaknesses which can allow a remote attacker to obtain the following information via sniffing: (1) password lengths or ranges of lengths, which simplifies brut... Read more

    Affected Products : openssh ssh
    • EPSS Score: %15.04
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0614

    Carello E-Commerce 1.2.1 and earlier allows a remote attacker to gain additional privileges and execute arbitrary commands via a specially constructed URL.... Read more

    Affected Products : e-commerce
    • EPSS Score: %4.38
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-2001-0586

    TrendMicro ScanMail for Exchange 3.5 Evaluation allows a local attacker to recover the administrative credentials for ScanMail via a combination of unprotected registry keys and weakly encrypted passwords.... Read more

    Affected Products : scanmail_exchange
    • EPSS Score: %0.07
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-2001-0578

    Buffer overflow in lpforms in SCO OpenServer 5.0-5.0.6 can allow a local attacker to gain additional privileges via a long first argument to the lpforms command.... Read more

    Affected Products : openserver
    • EPSS Score: %0.26
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-0580

    Hughes Technologies Virtual DNS (VDNS) Server 1.0 allows a remote attacker to create a denial of service by connecting to port 6070, sending some data, and closing the connection.... Read more

    Affected Products : dsl_vdns
    • EPSS Score: %3.39
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2001-0589

    NetScreen ScreenOS prior to 2.5r6 on the NetScreen-10 and Netscreen-100 can allow a local attacker to bypass the DMZ 'denial' policy via specific traffic patterns.... Read more

    Affected Products : netscreen_screenos
    • EPSS Score: %0.06
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025
Showing 20 of 291179 Results