Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 5.0

    MEDIUM
    CVE-2000-0051

    The Allaire Spectra Configuration Wizard allows remote attackers to cause a denial of service by repeatedly resubmitting data collections for indexing via a URL.... Read more

    Affected Products : spectra
    • Published: Jan. 04, 2000
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-2000-0050

    The Allaire Spectra Webtop allows authenticated users to access other Webtop sections by specifying explicit URLs.... Read more

    Affected Products : spectra
    • Published: Jan. 04, 2000
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2000-0053

    Microsoft Commercial Internet System (MCIS) IMAP server allows remote attackers to cause a denial of service via a malformed IMAP request.... Read more

    Affected Products : commercial_internet_system
    • Published: Jan. 04, 2000
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2000-0057

    Cold Fusion CFCACHE tag places temporary cache files within the web document root, allowing remote attackers to obtain sensitive system information.... Read more

    Affected Products : coldfusion_server
    • Published: Jan. 04, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0876

    Buffer overflow in Internet Explorer 4.0 via EMBED tag.... Read more

    Affected Products : internet_explorer ie
    • Published: Jan. 04, 2000
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-1999-0735

    KDE K-Mail allows local users to gain privileges via a symlink attack in temporary user directories.... Read more

    Affected Products : linux k-mail
    • Published: Jan. 04, 2000
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2000-0078

    The June 1999 version of the HP-UX aserver program allows local users to gain privileges by specifying an alternate PATH which aserver uses to find the awk command.... Read more

    Affected Products : hp-ux
    • Published: Jan. 02, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0082

    WebTV email client allows remote attackers to force the client to send email without the user's knowledge via HTML.... Read more

    Affected Products : webtv
    • Published: Jan. 02, 2000
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2000-0077

    The October 1998 version of the HP-UX aserver program allows local users to gain privileges by specifying an alternate PATH which aserver uses to find the ps and grep commands.... Read more

    Affected Products : hp-ux
    • Published: Jan. 02, 2000
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2000-0120

    The Remote Access Service invoke.cfm template in Allaire Spectra 1.0 allows users to bypass authentication via the bAuthenticated parameter.... Read more

    Affected Products : spectra
    • Published: Jan. 01, 2000
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2000-0069

    The recover program in Solstice Backup allows local users to restore sensitive files.... Read more

    Affected Products : solstice_backup
    • Published: Jan. 01, 2000
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-1999-0964

    Buffer overflow in FreeBSD setlocale in the libc module allows attackers to execute arbitrary code via a long PATH_LOCALE environment variable.... Read more

    Affected Products : freebsd
    • Published: Jan. 01, 2000
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-1999-1087

    Internet Explorer 4 treats a 32-bit number ("dotless IP address") in the a URL as the hostname instead of an IP address, which causes IE to apply Local Intranet Zone settings to the resulting web page, allowing remote malicious web servers to conduct unau... Read more

    Affected Products : internet_explorer
    • Published: Dec. 31, 1999
    • Modified: Apr. 03, 2025

  • 1.2

    LOW
    CVE-1999-1042

    Cisco Resource Manager (CRM) 1.0 and 1.1 creates world-readable log files and temporary files, which may expose sensitive information, to local users such as user IDs, passwords and SNMP community strings.... Read more

    Affected Products : resource_manager
    • Published: Dec. 31, 1999
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-1999-1127

    Windows NT 4.0 does not properly shut down invalid named pipe RPC connections, which allows remote attackers to cause a denial of service (resource exhaustion) via a series of connections containing malformed data, aka the "Named Pipes Over RPC" vulnerabi... Read more

    Affected Products : windows_nt
    • Published: Dec. 31, 1999
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-1999-1452

    GINA in Windows NT 4.0 allows attackers with physical access to display a portion of the clipboard of the user who has locked the workstation by pasting (CTRL-V) the contents into the username prompt.... Read more

    Affected Products : windows_nt
    • Published: Dec. 31, 1999
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2000-0011

    Buffer overflow in AnalogX SimpleServer:WWW HTTP server allows remote attackers to execute commands via a long GET request.... Read more

    Affected Products : simpleserver_www
    • Published: Dec. 31, 1999
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-1999-1117

    lquerypv in AIX 4.1 and 4.2 allows local users to read arbitrary files by specifying the file in the -h command line parameter.... Read more

    Affected Products : aix
    • Published: Dec. 31, 1999
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-1999-1126

    Cisco Resource Manager (CRM) 1.1 and earlier creates certain files with insecure permissions that allow local users to obtain sensitive configuration information including usernames, passwords, and SNMP community strings, from (1) swim_swd.log, (2) swim_d... Read more

    Affected Products : resource_manager
    • Published: Dec. 31, 1999
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-1999-1592

    Multiple unspecified vulnerabilities in sendmail 5, as installed on Sun SunOS 4.1.3_U1 and 4.1.4, have unspecified attack vectors and impact. NOTE: this might overlap CVE-1999-0129.... Read more

    Affected Products : sunos sendmail
    • Published: Dec. 31, 1999
    • Modified: Apr. 03, 2025
Showing 20 of 293545 Results