Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 10.0

    HIGH
    CVE-2000-0506

    The "capabilities" feature in Linux before 2.2.16 allows local users to cause a denial of service or gain privileges by setting the capabilities to prevent a setuid program from dropping privileges, aka the "Linux kernel setuid/setcap vulnerability."... Read more

    Affected Products : linux_kernel
    • Published: Jun. 09, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0548

    Buffer overflow in Kerberos 4 KDC program allows remote attackers to cause a denial of service via the e_msg variable in the kerb_err_reply function.... Read more

    • Published: Jun. 09, 2000
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2000-0498

    Unify eWave ServletExec allows a remote attacker to view source code of a JSP program by requesting a URL which provides the JSP extension in upper case.... Read more

    Affected Products : ewave_servletexec
    • Published: Jun. 08, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0554

    Ceilidh allows remote attackers to obtain the real path of the Ceilidh directory via the translated_path hidden form field.... Read more

    Affected Products : ceilidh
    • Published: Jun. 08, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0525

    OpenSSH does not properly drop privileges when the UseLogin option is enabled, which allows local users to execute arbitrary commands by providing the command to the ssh daemon.... Read more

    Affected Products : openssh
    • Published: Jun. 08, 2000
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2000-0502

    Mcafee VirusScan 4.03 does not properly restrict access to the alert text file before it is sent to the Central Alert Server, which allows local users to modify alerts in an arbitrary fashion.... Read more

    Affected Products : virusscan
    • Published: Jun. 08, 2000
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2000-0499

    The default configuration of BEA WebLogic 3.1.8 through 4.5.1 allows a remote attacker to view source code of a JSP program by requesting a URL which provides the JSP extension in upper case.... Read more

    Affected Products : weblogic_server
    • Published: Jun. 08, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0522

    RSA ACE/Server allows remote attackers to cause a denial of service by flooding the server's authentication request port with UDP packets, which causes the server to crash.... Read more

    Affected Products : ace_server
    • Published: Jun. 08, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0377

    The Remote Registry server in Windows NT 4.0 allows local authenticated users to cause a denial of service via a malformed request, which causes the winlogon process to fail, aka the "Remote Registry Access Authentication" vulnerability.... Read more

    Affected Products : windows_nt
    • Published: Jun. 08, 2000
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2000-0497

    IBM WebSphere server 3.0.2 allows a remote attacker to view source code of a JSP program by requesting a URL which provides the JSP extension in upper case.... Read more

    Affected Products : websphere_application_server
    • Published: Jun. 08, 2000
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-2000-0534

    The apsfilter software in the FreeBSD ports package does not properly read user filter configurations, which allows local users to execute commands as the lpd user.... Read more

    Affected Products : apsfilter
    • Published: Jun. 07, 2000
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2000-0532

    A FreeBSD patch for SSH on 2000-01-14 configures ssh to listen on port 722 as well as port 22, which might allow remote attackers to access SSH through port 722 even if port 22 is otherwise filtered.... Read more

    Affected Products : freebsd
    • Published: Jun. 07, 2000
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2000-0559

    eTrust Intrusion Detection System (formerly SessionWall-3) uses weak encryption (XOR) to store administrative passwords in the registry, which allows local users to easily decrypt the passwords.... Read more

    Affected Products : etrust_intrusion_detection
    • Published: Jun. 07, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0538

    ColdFusion Administrator for ColdFusion 4.5.1 and earlier allows remote attackers to cause a denial of service via a long login password.... Read more

    Affected Products : coldfusion_server
    • Published: Jun. 07, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0515

    The snmpd.conf configuration file for the SNMP daemon (snmpd) in HP-UX 11.0 is world writable, which allows local users to modify SNMP configuration or gain privileges.... Read more

    Affected Products : hp-ux
    • Published: Jun. 07, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0376

    Buffer overflow in the HTTP proxy server for the i-drive Filo software allows remote attackers to execute arbitrary commands via a long HTTP GET request.... Read more

    Affected Products : filo
    • Published: Jun. 07, 2000
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2000-0520

    Buffer overflow in restore program 0.4b17 and earlier in dump package allows local users to execute arbitrary commands via a long tape name.... Read more

    Affected Products : pop_dump
    • Published: Jun. 07, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0482

    Check Point Firewall-1 allows remote attackers to cause a denial of service by sending a large number of malformed fragmented IP packets.... Read more

    Affected Products : firewall-1
    • Published: Jun. 06, 2000
    • Modified: Apr. 03, 2025

  • 5.5

    MEDIUM
    CVE-2000-0552

    ICQwebmail client for ICQ 2000A creates a world readable temporary file during login and does not delete it, which allows local users to obtain sensitive information.... Read more

    Affected Products : icq
    • Published: Jun. 06, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0558

    Buffer overflow in HP Openview Network Node Manager 6.1 allows remote attackers to execute arbitrary commands via the Alarm service (OVALARMSRV) on port 2345.... Read more

    Affected Products : openview_network_node_manager
    • Published: Jun. 06, 2000
    • Modified: Apr. 03, 2025
Showing 20 of 292837 Results