Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 7.2

    HIGH
    CVE-2001-0923

    RPM Package Manager 4.0.x through 4.0.2.x allows an attacker to execute arbitrary code via corrupted data in the RPM file when the file is queried.... Read more

    Affected Products : redhat_package_manager
    • Published: Oct. 25, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1462

    WebID in RSA Security SecurID 5.0 as used by ACE/Agent for Windows, Windows NT and Windows 2000 allows attackers to cause the WebID agent to enter debug mode via a URL containing null characters, which may allow attackers to obtain sensitive information.... Read more

    Affected Products : securid
    • Published: Oct. 24, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1461

    Directory traversal vulnerability in WebID in RSA Security SecurID 5.0 as used by ACE/Agent for Windows, Windows NT and Windows 2000 allows attackers to access restricted resources via URL-encoded (1) /.. or (2) \.. sequences.... Read more

    Affected Products : securid
    • Published: Oct. 22, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-1438

    Handspring Visor 1.0 and 1.0.1 with the VisorPhone Springboard module installed allows remote attackers to cause a denial of service (PalmOS crash and VisorPhone database corruption) by sending a large or crafted SMS image.... Read more

    Affected Products : palm_os visor
    • Published: Oct. 22, 2001
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-2001-0762

    Buffer overflow in su-wrapper 1.1.1 allows local users to execute arbitrary code via a long first argument.... Read more

    Affected Products : su-wrapper
    • Published: Oct. 18, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-0780

    Directory traversal vulnerability in cosmicpro.cgi in Cosmicperl Directory Pro 2.0 allows remote attackers to gain sensitive information via a .. (dot dot) in the SHOW parameter.... Read more

    Affected Products : directory_pro
    • Published: Oct. 18, 2001
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-2001-0772

    Buffer overflows and other vulnerabilities in multiple Common Desktop Environment (CDE) modules in HP-UX 10.10 through 11.11 allow attackers to cause a denial of service and possibly gain additional privileges.... Read more

    Affected Products : hp-ux
    • Published: Oct. 18, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0753

    Cisco CBOS 2.3.8 and earlier stores the passwords for (1) exec and (2) enable in cleartext in the NVRAM and a configuration file, which could allow unauthorized users to obtain the passwords and gain privileges.... Read more

    Affected Products : cbos
    • Published: Oct. 18, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0792

    Format string vulnerability in XChat 1.2.x allows remote attackers to execute arbitrary code via a malformed nickname.... Read more

    Affected Products : xchat
    • Published: Oct. 18, 2001
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2001-0739

    Guardian Digital WebTool in EnGarde Secure Linux 1.0.1 allows restarted services to inherit some environmental variables, which could allow local users to gain root privileges.... Read more

    Affected Products : secure_linux
    • Published: Oct. 18, 2001
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2001-0764

    Buffer overflow in ntping in scotty 2.1.0 allows local users to execute arbitrary code via a long hostname as a command line argument.... Read more

    Affected Products : scotty
    • Published: Oct. 18, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-0790

    Specter IDS version 4.5 and 5.0 allows a remote attacker to cause a denial of service (CPU exhaustion) via a port scan, which causes the server to consume CPU while preparing alerts.... Read more

    Affected Products : specter_ids
    • Published: Oct. 18, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-0788

    Internet Software Solutions Air Messenger LAN Server (AMLServer) 3.4.2 allows remote attackers to obtain an absolute path for the server directory by viewing the Location header.... Read more

    Affected Products : air_messenger_lan_server
    • Published: Oct. 18, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0771

    Spytech SpyAnywhere 1.50 allows remote attackers to gain administrator access via a single character in the "loginpass" field.... Read more

    Affected Products : spyanywhere
    • Published: Oct. 18, 2001
    • Modified: Apr. 03, 2025

  • 6.2

    MEDIUM
    CVE-2001-0905

    Race condition in signal handling of procmail 3.20 and earlier, when running setuid, allows local users to cause a denial of service or gain root privileges by sending a signal while a signal handling routine is already running.... Read more

    Affected Products : procmail linux
    • Published: Oct. 18, 2001
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2001-0746

    Buffer overflow in Web Publisher in iPlanet Web Server Enterprise Edition 4.1 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a request for a long URI with (1) GETPROPERTIES, (2) GETATTRIBUTENAMES, ... Read more

    Affected Products : one_web_server iplanet_web_server
    • Published: Oct. 18, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0763

    Buffer overflow in Linux xinetd 2.1.8.9pre11-1 and earlier may allow remote attackers to execute arbitrary code via a long ident response, which is not properly handled by the svc_logprint function.... Read more

    Affected Products : debian_linux suse_linux
    • Published: Oct. 18, 2001
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2001-1384

    ptrace in Linux 2.2.x through 2.2.19, and 2.4.x through 2.4.9, allows local users to gain root privileges by running ptrace on a setuid or setgid program that itself calls an unprivileged program, such as newgrp.... Read more

    Affected Products : linux_kernel linux
    • Published: Oct. 18, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-0750

    Cisco IOS 12.1(2)T, 12.1(3)T allow remote attackers to cause a denial of service (reload) via a connection to TCP ports 3100-3999, 5100-5999, 7100-7999 and 10100-10999.... Read more

    Affected Products : ios
    • Published: Oct. 18, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-0784

    Directory traversal vulnerability in Icecast 1.3.10 and earlier allows remote attackers to read arbitrary files via a modified .. (dot dot) attack using encoded URL characters.... Read more

    Affected Products : icecast
    • Published: Oct. 18, 2001
    • Modified: Apr. 03, 2025
Showing 20 of 294307 Results