Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 9.8

    CRITICAL
    CVE-1999-1324

    VAXstations running Open VMS 5.3 through 5.5-2 with VMS DECwindows or MOTIF do not properly disable access to user accounts that exceed the break-in limit threshold for failed login attempts, which makes it easier for attackers to conduct brute force pass... Read more

    Affected Products : openvms_vax
    • Published: Dec. 31, 1999
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-1999-1287

    Vulnerability in Analog 3.0 and earlier allows remote attackers to read arbitrary files via the forms interface.... Read more

    Affected Products : analog
    • Published: Dec. 31, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-1293

    mod_proxy in Apache 1.2.5 and earlier allows remote attackers to cause a denial of service via malformed FTP commands, which causes Apache to dump core.... Read more

    Affected Products : http_server
    • Published: Dec. 31, 1999
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-1999-1223

    IIS 3.0 allows remote attackers to cause a denial of service via a request to an ASP page in which the URL contains a large number of / (forward slash) characters.... Read more

    Affected Products : internet_information_server
    • Published: Dec. 31, 1999
    • Modified: Apr. 03, 2025

  • 1.2

    LOW
    CVE-1999-1042

    Cisco Resource Manager (CRM) 1.0 and 1.1 creates world-readable log files and temporary files, which may expose sensitive information, to local users such as user IDs, passwords and SNMP community strings.... Read more

    Affected Products : resource_manager
    • Published: Dec. 31, 1999
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-1999-0001

    ip_input.c in BSD-derived TCP/IP implementations allows remote attackers to cause a denial of service (crash or hang) via crafted packets.... Read more

    Affected Products : freebsd openbsd bsd_os
    • Published: Dec. 30, 1999
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2000-0076

    nviboot boot script in the Debian nvi package allows local users to delete files via malformed entries in vi.recover.... Read more

    Affected Products : debian_linux nvi
    • Published: Dec. 30, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0003

    Buffer overflow in UnixWare rtpm program allows local users to gain privileges via a long environmental variable.... Read more

    Affected Products : unixware
    • Published: Dec. 30, 1999
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2000-0043

    Buffer overflow in CamShot WebCam HTTP server allows remote attackers to execute commands via a long GET request.... Read more

    Affected Products : webcam_http_server
    • Published: Dec. 30, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0042

    Buffer overflow in CSM mail server allows remote attackers to cause a denial of service or execute commands via a long HELO command.... Read more

    Affected Products : mail_server
    • Published: Dec. 29, 1999
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0007

    Trend Micro PC-Cillin does not restrict access to its internal proxy port, allowing remote attackers to conduct a denial of service.... Read more

    Affected Products : pc-cillin
    • Published: Dec. 29, 1999
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2000-0009

    The bna_pass program in Optivity NETarchitect uses the PATH environmental variable for finding the "rm" program, which allows local users to execute arbitrary commands.... Read more

    Affected Products : optivity_net_architect
    • Published: Dec. 29, 1999
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2000-0100

    The SMS Remote Control program is installed with insecure permissions, which allows local users to gain privileges by modifying or replacing the program.... Read more

    Affected Products : systems_management_server
    • Published: Dec. 29, 1999
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0039

    AltaVista search engine allows remote attackers to read files above the document root via a .. (dot dot) in the query.cgi CGI program.... Read more

    Affected Products : search_intranet
    • Published: Dec. 29, 1999
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-2000-0035

    resend command in Majordomo allows local users to gain privileges via shell metacharacters.... Read more

    Affected Products : majordomo
    • Published: Dec. 28, 1999
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0014

    Denial of service in Savant web server via a null character in the requested URL.... Read more

    Affected Products : savant_webserver
    • Published: Dec. 28, 1999
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0041

    Macintosh systems generate large ICMP datagrams in response to malformed datagrams, allowing them to be used as amplifiers in a flood attack.... Read more

    Affected Products : macos
    • Published: Dec. 28, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-1573

    Multiple unknown vulnerabilities in the "r-cmnds" (1) remshd, (2) rexecd, (3) rlogind, (4) rlogin, (5) remsh, (6) rcp, (7) rexec, and (8) rdist for HP-UX 10.00 through 11.00 allow attackers to gain privileges or access files.... Read more

    Affected Products : hp-ux
    • Published: Dec. 28, 1999
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-2000-0037

    Majordomo wrapper allows local users to gain privileges by specifying an alternate configuration file.... Read more

    Affected Products : majordomo
    • Published: Dec. 28, 1999
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-2000-0029

    UnixWare pis and mkpis commands allow local users to gain privileges via a symlink attack.... Read more

    Affected Products : unixware
    • Published: Dec. 27, 1999
    • Modified: Apr. 03, 2025
Showing 20 of 293566 Results