Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 4.6

    MEDIUM
    CVE-1999-1170

    IPswitch IMail allows local users to gain additional privileges and modify or add mail accounts by setting the "flags" registry key to 1920.... Read more

    Affected Products : imail ws_ftp_server
    • Published: Jan. 02, 1999
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-1999-1422

    The default configuration of Slackware 3.4, and possibly other versions, includes . (dot, the current directory) in the PATH environmental variable, which could allow local users to create Trojan horse programs that are inadvertently executed by other use... Read more

    Affected Products : slackware_linux
    • Published: Jan. 02, 1999
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-1999-0402

    wget 1.5.3 follows symlinks to change permissions of the target file instead of the symlink itself.... Read more

    Affected Products : wget
    • Published: Jan. 02, 1999
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2000-0005

    HP-UX aserver program allows local users to gain privileges via a symlink attack.... Read more

    Affected Products : hp-ux aserver 9000
    • Published: Jan. 02, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0559

    A system-critical Unix file or directory has inappropriate permissions.... Read more

    Affected Products :
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-1999-0398

    In some instances of SSH 1.2.27 and 2.0.11 on Linux systems, SSH will allow users with expired accounts to login.... Read more

    Affected Products : ssh ssh2
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-1999-1568

    Off-by-one error in NcFTPd FTP server before 2.4.1 allows a remote attacker to cause a denial of service (crash) via a long PORT command.... Read more

    Affected Products : ncftpd_server
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-1999-1430

    PIM software for Royal daVinci does not properly password-protext access to data stored in the .mdb (Microsoft Access) file, which allows local users to read the data without a password by directly accessing the files with a different application, such as... Read more

    Affected Products : davinci
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 5.1

    MEDIUM
    CVE-1999-1440

    Win32 ICQ 98a 1.30, and possibly other versions, does not display the entire portion of long filenames, which could allow attackers to send an executable file with a long name that contains so many spaces that the .exe extension is not displayed, which co... Read more

    Affected Products : icq_98a
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-1999-0388

    DataLynx suGuard trusts the PATH environment variable to execute the ps command, allowing local users to execute commands as root.... Read more

    Affected Products : suguard
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0397

    The demo version of the Quakenbush NT Password Appraiser sends passwords across the network in plaintext.... Read more

    Affected Products :
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0547

    An SSH server allows authentication through the .rhosts file.... Read more

    Affected Products :
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0512

    A mail server is explicitly configured to allow SMTP mail relay, which allows abuse by spammers.... Read more

    Affected Products :
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 0.0

    NONE
    CVE-1999-0635

    The echo service is running.... Read more

    Affected Products :
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-1999-0578

    A Windows NT system's registry audit policy does not log an event success or failure for security-critical registry keys.... Read more

    Affected Products : windows_nt
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 4.9

    MEDIUM
    CVE-1999-0593

    The default setting for the Winlogon key entry ShutdownWithoutLogon in Windows NT allows users with physical access to shut down a Windows NT system without logging in.... Read more

    Affected Products : windows_nt
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-1999-0650

    The netstat service is running, which provides sensitive information to remote attackers.... Read more

    Affected Products :
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0662

    A system-critical program or library does not have the appropriate patch, hotfix, or service pack installed, or is outdated or obsolete.... Read more

    Affected Products :
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0664

    An application-critical Windows NT registry key has inappropriate permissions.... Read more

    Affected Products :
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0569

    A URL for a WWW directory allows auto-indexing, which provides a list of all files in that directory if it does not contain an index.html file.... Read more

    Affected Products :
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025
Showing 20 of 293635 Results