Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 7.5

    HIGH
    CVE-2001-1398

    Masquerading code for Linux kernel before 2.2.19 does not fully check packet lengths in certain cases, which may lead to a vulnerability.... Read more

    Affected Products : linux_kernel linux
    • Published: Apr. 17, 2001
    • Modified: Apr. 03, 2025

  • 6.2

    MEDIUM
    CVE-2001-1390

    Unknown vulnerability in binfmt_misc in the Linux kernel before 2.2.19, related to user pages.... Read more

    Affected Products : linux_kernel linux
    • Published: Apr. 17, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1467

    mkpasswd in expect 5.2.8, as used by Red Hat Linux 6.2 through 7.0, seeds its random number generator with its process ID, which limits the space of possible seeds and makes it easier for attackers to conduct brute force password attacks.... Read more

    Affected Products : expect
    • Published: Apr. 11, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1425

    The challenge-response authentication of the EXPERT user for Alcatel Speed Touch running firmware KHDSAA.108 and KHDSAA.132 through KHDSAA.134 allows remote attackers to gain privileges by directly computing the response based on information that is provi... Read more

    Affected Products : speed_touch_home
    • Published: Apr. 10, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1424

    Alcatel Speed Touch ADSL modem running firmware KHDSAA.108, KHDSAA.132, KHDSBA.133, and KHDSAA.134 has a blank default password, which allows remote attackers to gain unauthorized access.... Read more

    Affected Products : speed_touch_home
    • Published: Apr. 10, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1426

    Alcatel Speed Touch running firmware KHDSAA.108 and KHDSAA.132 through KHDSAA.134 has a TFTP server running without a password, which allows remote attackers to change firmware versions or the device's configurations.... Read more

    Affected Products : speed_touch_home
    • Published: Apr. 10, 2001
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2001-0190

    Buffer overflow in /usr/bin/cu in Solaris 2.8 and earlier, and possibly other operating systems, allows local users to gain privileges by executing cu with a long program name (arg0).... Read more

    Affected Products : solaris sunos
    • Published: Mar. 26, 2001
    • Modified: Apr. 03, 2025

  • 2.6

    LOW
    CVE-2001-0184

    eEye Iris 1.01 beta allows remote attackers to cause a denial of service via a malformed packet, which causes Iris to crash when a user views the packet.... Read more

    Affected Products : iris
    • Published: Mar. 26, 2001
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2001-0223

    Buffer overflow in wwwwais allows remote attackers to execute arbitrary commands via a long QUERY_STRING (HTTP GET request).... Read more

    Affected Products : wwwwais.25.c
    • Published: Mar. 26, 2001
    • Modified: Apr. 03, 2025

  • 1.2

    LOW
    CVE-2001-0222

    webmin 0.84 and earlier allows local users to overwrite and create arbitrary files via a symlink attack.... Read more

    Affected Products : webmin
    • Published: Mar. 26, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-0231

    Directory traversal vulnerability in newsdesk.cgi in News Desk 1.2 allows remote attackers to read arbitrary files via a .. in the "t" parameter.... Read more

    Affected Products : news_desk
    • Published: Mar. 26, 2001
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2001-0203

    Watchguard Firebox II firewall allows users with read-only access to gain read-write access, and administrative privileges, by accessing a file that contains hashed passphrases, and using the hashes during authentication.... Read more

    Affected Products : firebox_ii
    • Published: Mar. 26, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0201

    The Postaci frontend for PostgreSQL does not properly filter characters such as semicolons, which could allow remote attackers to execute arbitrary SQL queries via the deletecontact.php program.... Read more

    Affected Products : postaci
    • Published: Mar. 26, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-0232

    newsdesk.cgi in News Desk 1.2 allows remote attackers to read arbitrary files via shell metacharacters.... Read more

    Affected Products : news_desk
    • Published: Mar. 26, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-0182

    FireWall-1 4.1 with a limited-IP license allows remote attackers to cause a denial of service by sending a large number of spoofed IP packets with various source addresses to the inside interface, which floods the console with warning messages and consume... Read more

    Affected Products : firewall-1 vpn-1_firewall-1
    • Published: Mar. 26, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-0175

    The caching module in Netscape Fasttrack Server 4.1 allows remote attackers to cause a denial of service (resource exhaustion) by requesting a large number of non-existent URLs.... Read more

    Affected Products : fasttrack_server
    • Published: Mar. 26, 2001
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2001-0219

    Vulnerability in Support Tools Manager (xstm,cstm,stm) in HP-UX 11.11 and earlier allows local users to cause a denial of service.... Read more

    Affected Products : hp-ux
    • Published: Mar. 26, 2001
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2001-0172

    Buffer overflow in ReiserFS 3.5.28 in SuSE Linux allows local users to cause a denial of service and possibly execute arbitrary commands by via a long directory name.... Read more

    Affected Products : suse_linux reiserfs
    • Published: Mar. 26, 2001
    • Modified: Apr. 03, 2025

  • 7.6

    HIGH
    CVE-2001-0166

    Macromedia Shockwave Flash plugin version 8 and earlier allows remote attackers to cause a denial of service via malformed tag length specifiers in a SWF file.... Read more

    Affected Products : shockwave_flash_plugin
    • Published: Mar. 26, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-0189

    Directory traversal vulnerability in LocalWEB2000 HTTP server allows remote attackers to read arbitrary commands via a .. (dot dot) attack in an HTTP GET request.... Read more

    Affected Products : localweb2000
    • Published: Mar. 26, 2001
    • Modified: Apr. 03, 2025
Showing 20 of 294330 Results