Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 10.0

    HIGH
    CVE-1999-0760

    Undocumented ColdFusion Markup Language (CFML) tags and functions in the ColdFusion Administrator allow users to gain additional privileges.... Read more

    Affected Products : coldfusion_server
    • EPSS Score: %0.45
    • Published: Mar. 12, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-1999-0800

    The GetFile.cfm file in Allaire Forums allows remote attackers to read files through a parameter to GetFile.cfm.... Read more

    Affected Products : forums
    • EPSS Score: %6.96
    • Published: Mar. 12, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-1999-0922

    An example application in ColdFusion Server 4.0 allows remote attackers to view source code via the sourcewindow.cfm file.... Read more

    Affected Products : coldfusion_server
    • EPSS Score: %0.81
    • Published: Mar. 12, 2001
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2000-0312

    cron in OpenBSD 2.5 allows local users to gain root privileges via an argv[] that is not NULL terminated, which is passed to cron's fake popen function.... Read more

    Affected Products : openbsd
    • EPSS Score: %0.06
    • Published: Mar. 12, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-1999-0784

    Denial of service in Oracle TNSLSNR SQL*Net Listener via a malformed string to the listener port, aka NERP.... Read more

    Affected Products : database_server
    • EPSS Score: %0.60
    • Published: Mar. 12, 2001
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2000-0368

    Classic Cisco IOS 9.1 and later allows attackers with access to the login prompt to obtain portions of the command history of previous users, which may allow the attacker to access sensitive data.... Read more

    Affected Products : ios
    • EPSS Score: %0.10
    • Published: Mar. 12, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-1999-0758

    Netscape Enterprise 3.5.1 and FastTrack 3.01 servers allow a remote attacker to view source code to scripts by appending a %20 to the script's URL.... Read more

    Affected Products : enterprise_server fasttrack_server
    • EPSS Score: %0.81
    • Published: Mar. 12, 2001
    • Modified: Apr. 03, 2025

  • 6.2

    MEDIUM
    CVE-1999-0718

    IBM GINA, when used for OS/2 domain authentication of Windows NT users, allows local users to gain administrator privileges by changing the GroupMapping registry key.... Read more

    Affected Products : gina
    • EPSS Score: %0.12
    • Published: Mar. 12, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0349

    Vulnerability in the passthru driver in SCO UnixWare 7.1.0 allows an attacker to cause a denial of service.... Read more

    Affected Products : unixware
    • EPSS Score: %0.48
    • Published: Mar. 12, 2001
    • Modified: Apr. 03, 2025

  • 1.2

    LOW
    CVE-2001-0116

    gpm 1.19.3 allows local users to overwrite arbitrary files via a symlink attack.... Read more

    Affected Products : linux mandrake_linux immunix
    • EPSS Score: %0.07
    • Published: Mar. 12, 2001
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0308

    Insecure file permissions for Netscape FastTrack Server 2.x, Enterprise Server 2.0, and Proxy Server 2.5 in SCO UnixWare 7.0.x and 2.1.3 allow an attacker to gain root privileges.... Read more

    • EPSS Score: %0.35
    • Published: Mar. 12, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0310

    IP fragment assembly in OpenBSD 2.4 allows a remote attacker to cause a denial of service by sending a large number of fragmented packets.... Read more

    Affected Products : openbsd
    • EPSS Score: %0.66
    • Published: Mar. 12, 2001
    • Modified: Apr. 03, 2025

  • 1.2

    LOW
    CVE-2001-0119

    getty_ps 2.0.7j allows local users to overwrite arbitrary files via a symlink attack.... Read more

    Affected Products : linux mandrake_linux immunix
    • EPSS Score: %0.07
    • Published: Mar. 12, 2001
    • Modified: Apr. 03, 2025

  • 1.2

    LOW
    CVE-2001-0120

    useradd program in shadow-utils program may allow local users to overwrite arbitrary files via a symlink attack.... Read more

    Affected Products : linux mandrake_linux immunix
    • EPSS Score: %0.07
    • Published: Mar. 12, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1103

    FTP Voyager ActiveX control before 8.0, when it is marked as safe for scripting (the default) or if allowed by the IObjectSafety interface, allows remote attackers to execute arbitrary commands.... Read more

    Affected Products : ftp_voyager
    • EPSS Score: %0.97
    • Published: Mar. 03, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1445

    Unknown vulnerability in the SMTP server in Lotus Domino 5.0 through 5.7 allows remote attackers to bypass mail relaying restrictions via crafted e-mail addresses in "RCPT TO" commands.... Read more

    Affected Products : domino_mail_server
    • EPSS Score: %0.85
    • Published: Mar. 01, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-1434

    Cisco IOS 12.0(5)XU through 12.1(2) allows remote attackers to read system administration and topology information via an "snmp-server host" command, which creates a readable "community" community string if one has not been previously created.... Read more

    Affected Products : ios
    • EPSS Score: %0.61
    • Published: Feb. 28, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2004-1776

    Cisco IOS 12.1(3) and 12.1(3)T allows remote attackers to read and modify device configuration data via the cable-docsis read-write community string used by the Data Over Cable Service Interface Specification (DOCSIS) standard.... Read more

    Affected Products : ios
    • EPSS Score: %1.04
    • Published: Feb. 28, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-1435

    inetd in Compaq Tru64 UNIX 5.1 allows attackers to cause a denial of service (network connection loss) by causing one of the services handled by inetd to core dump during startup, which causes inetd to stop accepting connections to all of its services.... Read more

    Affected Products : tru64
    • EPSS Score: %0.71
    • Published: Feb. 23, 2001
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2001-1439

    Buffer overflow in the text editor functionality in HP-UX 10.01 through 11.04 on HP9000 Series 700 and Series 800 allows local users to cause a denial of service ("system availability") via text editors such as (1) e, (2) ex, (3) vi, (4) edit, (5) view, a... Read more

    Affected Products : hp-ux
    • EPSS Score: %0.13
    • Published: Feb. 16, 2001
    • Modified: Apr. 03, 2025
Showing 20 of 291015 Results