Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 10.0

    HIGH
    CVE-2001-1009

    Fetchmail (aka fetchmail-ssl) before 5.8.17 allows a remote malicious (1) IMAP server or (2) POP/POP3 server to overwrite arbitrary memory and possibly gain privileges via a negative index number as part of a response to a LIST request.... Read more

    Affected Products : fetchmail
    • EPSS Score: %13.12
    • Published: Aug. 31, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2000-1192

    Buffer overflow in BTT Software SNMP Trap Watcher 1.16 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long string trap.... Read more

    Affected Products : snmp_trap_watcher
    • EPSS Score: %2.28
    • Published: Aug. 31, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-1154

    Cyrus 2.0.15, 2.0.16, and 1.6.24 on BSDi 4.2, with IMAP enabled, allows remote attackers to cause a denial of service (hang) using PHP IMAP clients.... Read more

    Affected Products : bsd_os cyrus_imap_server
    • EPSS Score: %0.74
    • Published: Aug. 30, 2001
    • Modified: Apr. 03, 2025

  • 5.5

    MEDIUM
    CVE-2001-0682

    ZoneAlarm and ZoneAlarm Pro allows a local attacker to cause a denial of service by running a trojan to initialize a ZoneAlarm mutex object which prevents ZoneAlarm from starting.... Read more

    Affected Products : zonealarm zonealarm_pro
    • EPSS Score: %0.13
    • Published: Aug. 29, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1379

    The PostgreSQL authentication modules (1) mod_auth_pgsql 0.9.5, and (2) mod_auth_pgsql_sys 0.9.4, allow remote attackers to bypass authentication and execute arbitrary SQL via a SQL injection attack on the user name.... Read more

    Affected Products : mod_auth_pgsql
    • EPSS Score: %1.72
    • Published: Aug. 29, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1389

    Multiple vulnerabilities in xinetd 2.3.0 and earlier, and additional variants until 2.3.3, may allow remote attackers to cause a denial of service or execute arbitrary code, primarily via buffer overflows or improper NULL termination.... Read more

    Affected Products : linux xinetd
    • EPSS Score: %2.44
    • Published: Aug. 29, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-1168

    Directory traversal vulnerability in index.php in PhpMyExplorer before 1.2.1 allows remote attackers to read arbitrary files via a ..%2F (modified dot dot) in the chemin parameter.... Read more

    • EPSS Score: %0.49
    • Published: Aug. 29, 2001
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2001-1153

    lpsystem in OpenUnix 8.0.0 allows local users to cause a denial of service and possibly execute arbitrary code via a long command line argument.... Read more

    Affected Products : openunix
    • EPSS Score: %0.05
    • Published: Aug. 28, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-1443

    KTH Kerberos IV and Kerberos V (Heimdal) for Telnet clients do not encrypt connections if the server does not support the requested encryption, which allows remote attackers to read communications via a man-in-the-middle attack.... Read more

    Affected Products : kth_kerberos
    • EPSS Score: %0.70
    • Published: Aug. 27, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1444

    The Kerberos Telnet protocol, as implemented by KTH Kerberos IV and Kerberos V (Heimdal), does not encrypt authentication and encryption options sent from the server, which allows remote attackers to downgrade authentication and encryption mechanisms via ... Read more

    Affected Products : kth_kerberos
    • EPSS Score: %0.68
    • Published: Aug. 27, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1455

    Netegrity SiteMinder 3.6 through 4.5.1 allows remote attackers to bypass filtering via URLs containing Unicode characters.... Read more

    Affected Products : siteminder
    • EPSS Score: %0.76
    • Published: Aug. 24, 2001
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2001-1091

    The (1) dump and (2) dump_lfs commands in NetBSD 1.4.x through 1.5.1 do not properly drop privileges, which could allow local users to gain privileges via the RCMD_CMD environment variable.... Read more

    Affected Products : netbsd
    • EPSS Score: %0.06
    • Published: Aug. 23, 2001
    • Modified: Apr. 03, 2025

  • 9.8

    CRITICAL
    CVE-2001-1155

    TCP Wrappers (tcp_wrappers) in FreeBSD 4.1.1 through 4.3 with the PARANOID ACL option enabled does not properly check the result of a reverse DNS lookup, which could allow remote attackers to bypass intended access restrictions via DNS spoofing.... Read more

    Affected Products : freebsd
    • EPSS Score: %0.47
    • Published: Aug. 23, 2001
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-2001-0576

    lpusers as included with SCO OpenServer 5.0 through 5.0.6 allows a local attacker to gain additional privileges via a buffer overflow attack in the '-u' command line parameter.... Read more

    Affected Products : openserver
    • EPSS Score: %0.26
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-0630

    Directory traversal vulnerability in MIMAnet viewsrc.cgi 2.0 allows a remote attacker to read arbitrary files via a '..' (dot dot) attack in the 'loc' variable.... Read more

    Affected Products : source_viewer
    • EPSS Score: %6.18
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2001-0625

    ftpdownload in Computer Associates InoculateIT 6.0 allows a local attacker to overwrite arbitrary files via a symlink attack on /tmp/ftpdownload.log .... Read more

    Affected Products : inoculateit
    • EPSS Score: %0.06
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-0631

    Centrinity First Class Internet Services 5.50 allows for the circumventing of the default 'spam' filters via the presence of '<@>' in the 'From:' field, which allows remote attackers to send spoofed email with the identity of local users.... Read more

    Affected Products : centrinity_firstclass
    • EPSS Score: %0.57
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2001-0634

    Sun Chili!Soft ASP has weak permissions on various configuration files, which allows a local attacker to gain additional privileges and create a denial of service.... Read more

    Affected Products : chilisoft
    • EPSS Score: %0.04
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-2001-0575

    Buffer overflow in lpshut in SCO OpenServer 5.0.6 can allow a local attacker to gain additional privileges via a long first argument to lpshut.... Read more

    Affected Products : openserver
    • EPSS Score: %0.26
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0632

    Sun Chili!Soft 3.5.2 on Linux and 3.6 on AIX creates a default admin username and password in the default installation, which can allow a remote attacker to gain additional privileges.... Read more

    Affected Products : chilisoft
    • EPSS Score: %0.55
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025
Showing 20 of 291739 Results