Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 5.0

    MEDIUM
    CVE-2000-0554

    Ceilidh allows remote attackers to obtain the real path of the Ceilidh directory via the translated_path hidden form field.... Read more

    Affected Products : ceilidh
    • Published: Jun. 08, 2000
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2000-0498

    Unify eWave ServletExec allows a remote attacker to view source code of a JSP program by requesting a URL which provides the JSP extension in upper case.... Read more

    Affected Products : ewave_servletexec
    • Published: Jun. 08, 2000
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2000-0497

    IBM WebSphere server 3.0.2 allows a remote attacker to view source code of a JSP program by requesting a URL which provides the JSP extension in upper case.... Read more

    Affected Products : websphere_application_server
    • Published: Jun. 08, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0525

    OpenSSH does not properly drop privileges when the UseLogin option is enabled, which allows local users to execute arbitrary commands by providing the command to the ssh daemon.... Read more

    Affected Products : openssh
    • Published: Jun. 08, 2000
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2000-0499

    The default configuration of BEA WebLogic 3.1.8 through 4.5.1 allows a remote attacker to view source code of a JSP program by requesting a URL which provides the JSP extension in upper case.... Read more

    Affected Products : weblogic_server
    • Published: Jun. 08, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0377

    The Remote Registry server in Windows NT 4.0 allows local authenticated users to cause a denial of service via a malformed request, which causes the winlogon process to fail, aka the "Remote Registry Access Authentication" vulnerability.... Read more

    Affected Products : windows_nt
    • Published: Jun. 08, 2000
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2000-0532

    A FreeBSD patch for SSH on 2000-01-14 configures ssh to listen on port 722 as well as port 22, which might allow remote attackers to access SSH through port 722 even if port 22 is otherwise filtered.... Read more

    Affected Products : freebsd
    • Published: Jun. 07, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0515

    The snmpd.conf configuration file for the SNMP daemon (snmpd) in HP-UX 11.0 is world writable, which allows local users to modify SNMP configuration or gain privileges.... Read more

    Affected Products : hp-ux
    • Published: Jun. 07, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0538

    ColdFusion Administrator for ColdFusion 4.5.1 and earlier allows remote attackers to cause a denial of service via a long login password.... Read more

    Affected Products : coldfusion_server
    • Published: Jun. 07, 2000
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2000-0559

    eTrust Intrusion Detection System (formerly SessionWall-3) uses weak encryption (XOR) to store administrative passwords in the registry, which allows local users to easily decrypt the passwords.... Read more

    Affected Products : etrust_intrusion_detection
    • Published: Jun. 07, 2000
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2000-0520

    Buffer overflow in restore program 0.4b17 and earlier in dump package allows local users to execute arbitrary commands via a long tape name.... Read more

    Affected Products : pop_dump
    • Published: Jun. 07, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0376

    Buffer overflow in the HTTP proxy server for the i-drive Filo software allows remote attackers to execute arbitrary commands via a long HTTP GET request.... Read more

    Affected Products : filo
    • Published: Jun. 07, 2000
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-2000-0534

    The apsfilter software in the FreeBSD ports package does not properly read user filter configurations, which allows local users to execute commands as the lpd user.... Read more

    Affected Products : apsfilter
    • Published: Jun. 07, 2000
    • Modified: Apr. 03, 2025

  • 2.6

    LOW
    CVE-2000-0503

    The IFRAME of the WebBrowser control in Internet Explorer 5.01 allows a remote attacker to violate the cross frame security policy via the NavigateComplete2 event.... Read more

    Affected Products : internet_explorer
    • Published: Jun. 06, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0523

    Buffer overflow in the logging feature of EServ 2.9.2 and earlier allows an attacker to execute arbitrary commands via a long MKD command.... Read more

    Affected Products : eserv
    • Published: Jun. 06, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0482

    Check Point Firewall-1 allows remote attackers to cause a denial of service by sending a large number of malformed fragmented IP packets.... Read more

    Affected Products : firewall-1
    • Published: Jun. 06, 2000
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2000-0516

    When configured to store configuration information in an LDAP directory, Shiva Access Manager 5.0.0 stores the root DN (Distinguished Name) name and password in cleartext in a file that is world readable, which allows local users to compromise the LDAP se... Read more

    Affected Products : shiva_access_manager
    • Published: Jun. 06, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0558

    Buffer overflow in HP Openview Network Node Manager 6.1 allows remote attackers to execute arbitrary commands via the Alarm service (OVALARMSRV) on port 2345.... Read more

    Affected Products : openview_network_node_manager
    • Published: Jun. 06, 2000
    • Modified: Apr. 03, 2025

  • 5.5

    MEDIUM
    CVE-2000-0552

    ICQwebmail client for ICQ 2000A creates a world readable temporary file during login and does not delete it, which allows local users to obtain sensitive information.... Read more

    Affected Products : icq
    • Published: Jun. 06, 2000
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2000-0537

    BRU backup software allows local users to append data to arbitrary files by specifying an alternate configuration file with the BRUEXECLOG environmental variable.... Read more

    Affected Products : bru
    • Published: Jun. 05, 2000
    • Modified: Apr. 03, 2025
Showing 20 of 293353 Results