Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 5.0

    MEDIUM
    CVE-2001-0348

    Microsoft Windows 2000 telnet service allows attackers to cause a denial of service (crash) via a long logon command that contains a backspace.... Read more

    Affected Products : windows_2000
    • EPSS Score: %28.41
    • Published: Jul. 21, 2001
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2001-0349

    Microsoft Windows 2000 telnet service creates named pipes with predictable names and does not properly verify them, which allows local users to execute arbitrary commands by creating a named pipe with the predictable name and associating a malicious progr... Read more

    Affected Products : windows_2000
    • EPSS Score: %3.11
    • Published: Jul. 21, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-0515

    Oracle Listener in Oracle 7.3 and 8i allows remote attackers to cause a denial of service via a malformed connection packet with a large offset_to_data value.... Read more

    Affected Products : database_server oracle8i
    • EPSS Score: %0.54
    • Published: Jul. 21, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-0503

    Microsoft NetMeeting 3.01 with Remote Desktop Sharing enabled allows remote attackers to cause a denial of service via a malformed string to the NetMeeting service port, aka a variant of the "NetMeeting Desktop Sharing" vulnerability.... Read more

    Affected Products : netmeeting
    • EPSS Score: %22.39
    • Published: Jul. 21, 2001
    • Modified: Apr. 03, 2025

  • 7.8

    HIGH
    CVE-2001-0497

    dnskeygen in BIND 8.2.4 and earlier, and dnssec-keygen in BIND 9.1.2 and earlier, set insecure permissions for a HMAC-MD5 shared secret key file used for DNS Transactional Signatures (TSIG), which allows attackers to obtain the keys and perform dynamic DN... Read more

    Affected Products : bind
    • EPSS Score: %0.11
    • Published: Jul. 21, 2001
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2001-0344

    An SQL query method in Microsoft SQL Server 2000 Gold and 7.0 using Mixed Mode allows local database users to gain privileges by reusing a cached connection of the sa administrator account.... Read more

    Affected Products : sql_server sql_server
    • EPSS Score: %1.04
    • Published: Jul. 21, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-0345

    Microsoft Windows 2000 telnet service allows attackers to prevent idle Telnet sessions from timing out, causing a denial of service by creating a large number of idle sessions.... Read more

    Affected Products : windows_2000
    • EPSS Score: %13.48
    • Published: Jul. 21, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0340

    An interaction between the Outlook Web Access (OWA) service in Microsoft Exchange 2000 Server and Internet Explorer allows attackers to execute malicious script code against a user's mailbox via a message attachment that contains HTML code, which is execu... Read more

    Affected Products : exchange_server
    • EPSS Score: %6.26
    • Published: Jul. 21, 2001
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2001-0499

    Buffer overflow in Transparent Network Substrate (TNS) Listener in Oracle 8i 8.1.7 and earlier allows remote attackers to gain privileges via a long argument to the commands (1) STATUS, (2) PING, (3) SERVICES, (4) TRC_FILE, (5) SAVE_CONFIG, or (6) RELOAD.... Read more

    Affected Products : database_server oracle8i
    • EPSS Score: %74.94
    • Published: Jul. 21, 2001
    • Modified: Apr. 03, 2025

  • 9.3

    HIGH
    CVE-2001-0537

    HTTP server for Cisco IOS 11.3 to 12.2 allows attackers to bypass authentication and execute arbitrary commands, when local authorization is being used, by specifying a high access level in the URL.... Read more

    Affected Products : ios
    • EPSS Score: %93.45
    • Published: Jul. 21, 2001
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2001-0353

    Buffer overflow in the line printer daemon (in.lpd) for Solaris 8 and earlier allows local and remote attackers to gain root privileges via a "transfer job" routine.... Read more

    Affected Products : solaris sunos
    • EPSS Score: %1.48
    • Published: Jul. 21, 2001
    • Modified: Apr. 03, 2025

  • 2.6

    LOW
    CVE-2000-0892

    Some telnet clients allow remote telnet servers to request environment variables from the client that may contain sensitive information, or remote web servers to obtain the information via a telnet: URL.... Read more

    Affected Products : openlinux u_win
    • EPSS Score: %0.66
    • Published: Jul. 21, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-0516

    Oracle listener between Oracle 9i and Oracle 8.0 allows remote attackers to cause a denial of service via a malformed connection packet that contains an incorrect requester_version value that does not match an expected offset to the data.... Read more

    Affected Products : oracle8i oracle9i
    • EPSS Score: %0.54
    • Published: Jul. 21, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2000-0891

    A default ECL in Lotus Notes before 5.02 allows remote attackers to execute arbitrary commands by attaching a malicious program in an email message that is automatically executed when the user opens the email.... Read more

    Affected Products : lotus_notes
    • EPSS Score: %3.32
    • Published: Jul. 21, 2001
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2001-1355

    Buffer overflows in NetWin Authentication Module (NWAuth) 3.0b and earlier, as implemented in DMail, SurgeFTP, and possibly other packages, could allow attackers to execute arbitrary code via long arguments to (1) the -del command or (2) the -lookup comma... Read more

    Affected Products : surgeftp dmail
    • EPSS Score: %1.33
    • Published: Jul. 20, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1265

    Directory traversal vulnerability in IBM alphaWorks Java TFTP server 1.21 allows remote attackers to conduct unauthorized operations on arbitrary files via a .. (dot dot) attack.... Read more

    Affected Products : alphaworks_tftp_server
    • EPSS Score: %0.75
    • Published: Jul. 20, 2001
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-2001-1354

    NetWin Authentication module (NWAuth) 2.0 and 3.0b, as implemented in SurgeFTP, DMail, and possibly other packages, uses weak password hashing, which could allow local users to decrypt passwords or use a different password that has the same hash value as ... Read more

    Affected Products : surgeftp dmail
    • EPSS Score: %0.15
    • Published: Jul. 20, 2001
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2001-1367

    The checkAccess function in PHPSlice 0.1.4, and all other versions between 0.1.1 and 0.1.6, does not properly verify the administrative access level, which could allow remote attackers to gain privileges.... Read more

    Affected Products : phpslice
    • EPSS Score: %0.93
    • Published: Jul. 19, 2001
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2001-1363

    Vulnerability in phpWebSite before 0.7.9 related to running multiple instances in the same domain, which may allow attackers to gain administrative privileges.... Read more

    Affected Products : phpwebsite
    • EPSS Score: %0.48
    • Published: Jul. 19, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1364

    Vulnerability in autodns.pl for AutoDNS before 0.0.4 related to domain names that are not fully qualified.... Read more

    Affected Products : autodns
    • EPSS Score: %0.49
    • Published: Jul. 19, 2001
    • Modified: Apr. 03, 2025
Showing 20 of 291562 Results