Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 2.1

    LOW
    CVE-2001-1394

    Signedness error in (1) getsockopt and (2) setsockopt for Linux kernel before 2.2.19 allows local users to cause a denial of service.... Read more

    Affected Products : linux_kernel linux
    • EPSS Score: %0.06
    • Published: Apr. 17, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1467

    mkpasswd in expect 5.2.8, as used by Red Hat Linux 6.2 through 7.0, seeds its random number generator with its process ID, which limits the space of possible seeds and makes it easier for attackers to conduct brute force password attacks.... Read more

    Affected Products : expect
    • EPSS Score: %0.66
    • Published: Apr. 11, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1425

    The challenge-response authentication of the EXPERT user for Alcatel Speed Touch running firmware KHDSAA.108 and KHDSAA.132 through KHDSAA.134 allows remote attackers to gain privileges by directly computing the response based on information that is provi... Read more

    Affected Products : speed_touch_home
    • EPSS Score: %4.16
    • Published: Apr. 10, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1424

    Alcatel Speed Touch ADSL modem running firmware KHDSAA.108, KHDSAA.132, KHDSBA.133, and KHDSAA.134 has a blank default password, which allows remote attackers to gain unauthorized access.... Read more

    Affected Products : speed_touch_home
    • EPSS Score: %3.43
    • Published: Apr. 10, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1426

    Alcatel Speed Touch running firmware KHDSAA.108 and KHDSAA.132 through KHDSAA.134 has a TFTP server running without a password, which allows remote attackers to change firmware versions or the device's configurations.... Read more

    Affected Products : speed_touch_home
    • EPSS Score: %1.83
    • Published: Apr. 10, 2001
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2001-0219

    Vulnerability in Support Tools Manager (xstm,cstm,stm) in HP-UX 11.11 and earlier allows local users to cause a denial of service.... Read more

    Affected Products : hp-ux
    • EPSS Score: %0.10
    • Published: Mar. 26, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0183

    ipfw and ip6fw in FreeBSD 4.2 and earlier allows remote attackers to bypass access restrictions by setting the ECE flag in a TCP packet, which makes the packet appear to be part of an established connection.... Read more

    Affected Products : freebsd
    • EPSS Score: %8.91
    • Published: Mar. 26, 2001
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2001-0197

    Format string vulnerability in print_client in icecast 1.3.8beta2 and earlier allows remote attackers to execute arbitrary commands.... Read more

    Affected Products : linux icecast
    • EPSS Score: %9.54
    • Published: Mar. 26, 2001
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2001-0187

    Format string vulnerability in wu-ftp 2.6.1 and earlier, when running with debug mode enabled, allows remote attackers to execute arbitrary commands via a malformed argument that is recorded in a PASV port assignment.... Read more

    Affected Products : wu-ftpd
    • EPSS Score: %8.09
    • Published: Mar. 26, 2001
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2001-0223

    Buffer overflow in wwwwais allows remote attackers to execute arbitrary commands via a long QUERY_STRING (HTTP GET request).... Read more

    Affected Products : wwwwais.25.c
    • EPSS Score: %2.60
    • Published: Mar. 26, 2001
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2001-0207

    Buffer overflow in bing allows remote attackers to execute arbitrary commands via a long hostname, which is copied to a small buffer after a reverse DNS lookup using the gethostbyaddr function.... Read more

    Affected Products : bing
    • EPSS Score: %2.10
    • Published: Mar. 26, 2001
    • Modified: Apr. 03, 2025

  • 7.6

    HIGH
    CVE-2001-0166

    Macromedia Shockwave Flash plugin version 8 and earlier allows remote attackers to cause a denial of service via malformed tag length specifiers in a SWF file.... Read more

    Affected Products : shockwave_flash_plugin
    • EPSS Score: %0.98
    • Published: Mar. 26, 2001
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2001-0209

    Buffer overflow in Shoutcast Distributed Network Audio Server (DNAS) 1.7.1 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long description.... Read more

    Affected Products : dnas
    • EPSS Score: %1.80
    • Published: Mar. 26, 2001
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2001-0170

    glibc 2.1.9x and earlier does not properly clear the RESOLV_HOST_CONF, HOSTALIASES, or RES_OPTIONS environmental variables when executing setuid/setgid programs, which could allow local users to read arbitrary files.... Read more

    Affected Products : debian_linux linux linux immunix
    • EPSS Score: %0.26
    • Published: Mar. 26, 2001
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2001-0176

    The setuid doroot program in Voyant Sonata 3.x executes arbitrary command line arguments, which allows local users to gain root privileges.... Read more

    Affected Products : sonata
    • EPSS Score: %0.05
    • Published: Mar. 26, 2001
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2001-0181

    Format string vulnerability in the error logging code of DHCP server and client in Caldera Linux allows remote attackers to execute arbitrary commands.... Read more

    • EPSS Score: %2.32
    • Published: Mar. 26, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-0175

    The caching module in Netscape Fasttrack Server 4.1 allows remote attackers to cause a denial of service (resource exhaustion) by requesting a large number of non-existent URLs.... Read more

    Affected Products : fasttrack_server
    • EPSS Score: %0.76
    • Published: Mar. 26, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-0188

    GoodTech FTP server 3.0.1.2.1.0 and earlier allows remote attackers to cause a denial of service via a flood of connections to the server, which causes it to crash.... Read more

    Affected Products : ftp_server_95_98 ftp_server_nt_2000
    • EPSS Score: %0.74
    • Published: Mar. 26, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-0189

    Directory traversal vulnerability in LocalWEB2000 HTTP server allows remote attackers to read arbitrary commands via a .. (dot dot) attack in an HTTP GET request.... Read more

    Affected Products : localweb2000
    • EPSS Score: %4.09
    • Published: Mar. 26, 2001
    • Modified: Apr. 03, 2025

  • 7.8

    HIGH
    CVE-2001-0195

    sash before 3.4-4 in Debian GNU/Linux does not properly clone /etc/shadow, which makes it world-readable and could allow local users to gain privileges via password cracking.... Read more

    Affected Products : debian_linux
    • EPSS Score: %0.08
    • Published: Mar. 26, 2001
    • Modified: Apr. 03, 2025
Showing 20 of 291009 Results