Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 7.2

    HIGH
    CVE-2001-0634

    Sun Chili!Soft ASP has weak permissions on various configuration files, which allows a local attacker to gain additional privileges and create a denial of service.... Read more

    Affected Products : chilisoft
    • EPSS Score: %0.04
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-0631

    Centrinity First Class Internet Services 5.50 allows for the circumventing of the default 'spam' filters via the presence of '<@>' in the 'From:' field, which allows remote attackers to send spoofed email with the identity of local users.... Read more

    Affected Products : centrinity_firstclass
    • EPSS Score: %0.57
    • Published: Aug. 22, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-1295

    Directory traversal vulnerability in Cerberus FTP Server 1.5 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the CD command.... Read more

    Affected Products : cerberus_ftp_server
    • EPSS Score: %1.61
    • Published: Aug. 21, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-1131

    Directory traversal vulnerability in WhitSoft Development SlimFTPd 2.2 allows an attacker to read arbitrary files and directories via a ... (modified dot dot) in the CD command.... Read more

    Affected Products : slimftpd
    • EPSS Score: %0.43
    • Published: Aug. 21, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-1149

    Panda Antivirus Platinum before 6.23.00 allows a remore attacker to cause a denial of service (crash) when a user selects an action for a malformed UPX packed executable file.... Read more

    Affected Products : panda_antivirus_platinum
    • EPSS Score: %0.48
    • Published: Aug. 21, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-1166

    linprocfs on FreeBSD 4.3 and earlier does not properly restrict access to kernel memory, which allows one process with debugging rights on a privileged process to read restricted memory from that process.... Read more

    Affected Products : freebsd
    • EPSS Score: %0.58
    • Published: Aug. 21, 2001
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2001-1133

    Vulnerability in a system call in BSDI 3.0 and 3.1 allows local users to cause a denial of service (reboot) in the kernel via a particular sequence of instructions.... Read more

    Affected Products : bsd_os
    • EPSS Score: %0.42
    • Published: Aug. 21, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-1203

    Lotus Domino SMTP server 4.63 through 5.08 allows remote attackers to cause a denial of service (CPU consumption) by forging an email message with the sender as bounce@[127.0.0.1] (localhost), which causes Domino to enter a mail loop.... Read more

    Affected Products : domino
    • EPSS Score: %0.91
    • Published: Aug. 20, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-1305

    ICQ 2001a Alpha and earlier allows remote attackers to automatically add arbitrary UINs to an ICQ user's contact list via a URL to a web page with a Content-Type of application/x-icq, which is processed by Internet Explorer.... Read more

    Affected Products : icq
    • EPSS Score: %0.52
    • Published: Aug. 17, 2001
    • Modified: Apr. 03, 2025

  • 6.2

    MEDIUM
    CVE-2001-1145

    fts routines in FreeBSD 4.3 and earlier, NetBSD before 1.5.2, and OpenBSD 2.9 and earlier can be forced to change (chdir) into a different directory than intended when the directory above the current directory is moved, which could cause scripts to perfor... Read more

    Affected Products : freebsd netbsd openbsd
    • EPSS Score: %0.06
    • Published: Aug. 17, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0523

    eEye SecureIIS versions 1.0.3 and earlier allows a remote attacker to bypass filtering of requests made to SecureIIS by escaping HTML characters within the request, which could allow a remote attacker to use restricted variables and perform directory trav... Read more

    Affected Products : secureiis securells
    • EPSS Score: %0.42
    • Published: Aug. 14, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-0566

    Cisco Catalyst 2900XL switch allows a remote attacker to create a denial of service via an empty UDP packet sent to port 161 (SNMP) when SNMP is disabled.... Read more

    Affected Products : catalyst_2900
    • EPSS Score: %15.85
    • Published: Aug. 14, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-0557

    T. Hauck Jana Webserver 1.46 and earlier allows a remote attacker to view arbitrary files via a '..' (dot dot) attack which is URL encoded (%2e%2e).... Read more

    Affected Products : jana_web_server
    • EPSS Score: %12.65
    • Published: Aug. 14, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-1231

    GroupWise 5.5 and 6 running in live remote or smart caching mode allows remote attackers to read arbitrary users' mailboxes by extracting usernames and passwords from sniffed network traffic, as addressed by the "Padlock" fix.... Read more

    Affected Products : groupwise
    • EPSS Score: %1.66
    • Published: Aug. 14, 2001
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-2001-0549

    Symantec LiveUpdate 1.5 stores proxy passwords in cleartext in a registry key, which could allow local users to obtain the passwords.... Read more

    Affected Products : liveupdate
    • EPSS Score: %0.10
    • Published: Aug. 14, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0524

    eEye SecureIIS versions 1.0.3 and earlier does not perform length checking on individual HTTP headers, which allows a remote attacker to send arbitrary length strings to IIS, contrary to an advertised feature of SecureIIS versions 1.0.3 and earlier.... Read more

    Affected Products : securells
    • EPSS Score: %0.86
    • Published: Aug. 14, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0611

    Becky! 2.00.05 and earlier can allow a remote attacker to gain additional privileges via a buffer overflow attack on long messages without newline characters.... Read more

    Affected Products : becky_internet_mail
    • EPSS Score: %1.01
    • Published: Aug. 14, 2001
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2001-0570

    minicom 1.83.1 and earlier allows a local attacker to gain additional privileges via numerous format string attacks.... Read more

    Affected Products : minicom
    • EPSS Score: %0.05
    • Published: Aug. 14, 2001
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2001-0533

    Buffer overflow in libi18n library in IBM AIX 5.1 and 4.3.x allows local users to gain root privileges via a long LANG environmental variable.... Read more

    Affected Products : aix
    • EPSS Score: %0.07
    • Published: Aug. 14, 2001
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2001-0527

    DCScripts DCForum versions 2000 and earlier allow a remote attacker to gain additional privileges by inserting pipe symbols (|) and newlines into the last name in the registration form, which will create an extra entry in the registration database.... Read more

    Affected Products : dcforum dcforum_2000
    • EPSS Score: %6.99
    • Published: Aug. 14, 2001
    • Modified: Apr. 03, 2025
Showing 20 of 291802 Results