Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 7.5

    HIGH
    CVE-1999-0185

    In SunOS or Solaris, a remote user could connect from an FTP server's data port to an rlogin server on a host that trusts the FTP server, allowing remote command execution.... Read more

    Affected Products : solaris sunos
    • Published: Oct. 01, 1997
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-1999-0160

    Some classic Cisco IOS devices have a vulnerability in the PPP CHAP authentication to establish unauthorized PPP connections.... Read more

    Affected Products : ios
    • Published: Oct. 01, 1997
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-1999-0300

    nis_cachemgr for Solaris NIS+ allows attackers to add malicious NIS+ servers.... Read more

    Affected Products : solaris sunos
    • Published: Oct. 01, 1997
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-1999-1213

    Vulnerability in telnet service in HP-UX 10.30 allows attackers to cause a denial of service.... Read more

    Affected Products : hp-ux
    • Published: Oct. 01, 1997
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-1999-0090

    Buffer overflow in AIX rcp command allows local users to obtain root access.... Read more

    Affected Products : aix
    • Published: Oct. 01, 1997
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0182

    Samba has a buffer overflow which allows a remote attacker to obtain root access by specifying a long password.... Read more

    Affected Products : samba
    • Published: Sep. 30, 1997
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-1999-0267

    Buffer overflow in NCSA HTTP daemon v1.3 allows remote command execution.... Read more

    Affected Products : ncsa_httpd
    • Published: Sep. 23, 1997
    • Modified: Apr. 03, 2025

  • 7.6

    HIGH
    CVE-1999-0955

    Race condition in wu-ftpd and BSDI ftpd allows remote attackers to gain root access via the SITE EXEC command.... Read more

    Affected Products : wu-ftpd
    • Published: Sep. 23, 1997
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-1125

    Oracle Webserver 2.1 and earlier runs setuid root, but the configuration file is owned by the oracle account, which allows any local or remote attacker who obtains access to the oracle account to gain privileges or modify arbitrary files by modifying the ... Read more

    Affected Products : http_server
    • Published: Sep. 19, 1997
    • Modified: Apr. 03, 2025

  • 6.2

    MEDIUM
    CVE-1999-0965

    Race condition in xterm allows local users to modify arbitrary files via the logging option.... Read more

    Affected Products : x11 xterm
    • Published: Sep. 19, 1997
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0667

    The ARP protocol allows any host to spoof ARP replies and poison the ARP cache to conduct IP address spoofing or a denial of service.... Read more

    Affected Products : arp_protocol
    • Published: Sep. 19, 1997
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-1999-0956

    The NeXT NetInfo _writers property allows local users to gain root privileges or conduct a denial of service.... Read more

    Affected Products : nextstep
    • Published: Sep. 19, 1997
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-1999-1214

    The asynchronous I/O facility in 4.4 BSD kernel does not check user credentials when setting the recipient of I/O notification, which allows local users to cause a denial of service by using certain ioctl and fcntl calls to cause the signal to be sent to ... Read more

    Affected Products : freebsd netbsd openbsd bsd irix
    • Published: Sep. 15, 1997
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-1999-0079

    Remote attackers can cause a denial of service in FTP by issuing multiple PASV commands, causing the server to run out of available ports.... Read more

    Affected Products : solaris bisonware_ftp_server
    • Published: Sep. 12, 1997
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-1999-1275

    Lotus cc:Mail release 8 stores the postoffice password in plaintext in a hidden file which has insecure permissions, which allows local users to gain privileges.... Read more

    Affected Products : lotus_cc_mail
    • Published: Sep. 08, 1997
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-1999-1139

    Character-Terminal User Environment (CUE) in HP-UX 11.0 and earlier allows local users to overwrite arbitrary files and gain root privileges via a symlink attack on the IOERROR.mytty file.... Read more

    Affected Products : hp-ux
    • Published: Sep. 01, 1997
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-1999-0071

    Apache httpd cookie buffer overflow for versions 1.1.1 and earlier.... Read more

    Affected Products : http_server
    • Published: Sep. 01, 1997
    • Modified: Apr. 03, 2025

  • 6.4

    MEDIUM
    CVE-1999-0183

    Linux implementations of TFTP would allow access to files outside the restricted directory.... Read more

    Affected Products : linux_kernel tftp
    • Published: Sep. 01, 1997
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-1999-0237

    Remote execution of arbitrary commands through Guestbook CGI program.... Read more

    Affected Products : cgi_guestbook
    • Published: Sep. 01, 1997
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-1999-1133

    HP-UX 9.x and 10.x running X windows may allow local attackers to gain privileges via (1) vuefile, (2) vuepad, (3) dtfile, or (4) dtpad, which do not authenticate users.... Read more

    Affected Products : hp-ux
    • Published: Sep. 01, 1997
    • Modified: Apr. 03, 2025
Showing 20 of 293280 Results