Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 10.0

    HIGH
    CVE-1999-0200

    Windows NT FTP server (WFTP) with the guest account enabled without a password allows an attacker to log into the FTP server using any username and password.... Read more

    Affected Products :
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-1999-0388

    DataLynx suGuard trusts the PATH environment variable to execute the ps command, allowing local users to execute commands as root.... Read more

    Affected Products : suguard
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-1999-0398

    In some instances of SSH 1.2.27 and 2.0.11 on Linux systems, SSH will allow users with expired accounts to login.... Read more

    Affected Products : ssh ssh2
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-1999-0276

    mSQL v2.0.1 and below allows remote execution through a buffer overflow.... Read more

    Affected Products : msql
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-1999-1430

    PIM software for Royal daVinci does not properly password-protext access to data stored in the .mdb (Microsoft Access) file, which allows local users to read the data without a password by directly accessing the files with a different application, such as... Read more

    Affected Products : davinci
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-1999-0384

    The Forms 2.0 ActiveX control (included with Visual Basic for Applications 5.0) can be used to read text from a user's clipboard when the user accesses documents with ActiveX content.... Read more

    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 5.1

    MEDIUM
    CVE-1999-1440

    Win32 ICQ 98a 1.30, and possibly other versions, does not display the entire portion of long filenames, which could allow attackers to send an executable file with a long name that contains so many spaces that the .exe extension is not displayed, which co... Read more

    Affected Products : icq_98a
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-1999-1159

    SSH 2.0.11 and earlier allows local users to request remote forwarding from privileged ports without being root.... Read more

    Affected Products : ssh2
    • Published: Dec. 29, 1998
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-1999-1285

    Linux 2.1.132 and earlier allows local users to cause a denial of service (resource exhaustion) by reading a large buffer from a random device (e.g. /dev/urandom), which cannot be interrupted until the read has completed.... Read more

    Affected Products : linux_kernel
    • Published: Dec. 27, 1998
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-1999-1188

    mysqld in MySQL 3.21 creates log files with world-readable permissions, which allows local users to obtain passwords for users who are added to the user database.... Read more

    Affected Products : mysql
    • Published: Dec. 27, 1998
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-1999-0968

    Buffer overflow in BNC IRC proxy allows remote attackers to gain privileges.... Read more

    Affected Products : bnc_irc
    • Published: Dec. 26, 1998
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-1999-1281

    Development version of Breeze Network Server allows remote attackers to cause the system to reboot by accessing the configbreeze CGI program.... Read more

    Affected Products : breeze_network_server
    • Published: Dec. 26, 1998
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-1999-1278

    nlog CGI scripts do not properly filter shell metacharacters from the IP address argument, which could allow remote attackers to execute certain commands via (1) nlog-smb.pl or (2) rpc-nlog.pl.... Read more

    Affected Products : nlog
    • Published: Dec. 25, 1998
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-1999-1277

    BackWeb client stores the username and password in cleartext for proxy authentication in the Communication registry key, which could allow other local users to gain privileges by reading the password.... Read more

    Affected Products : backweb_client
    • Published: Dec. 24, 1998
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-1999-1173

    Corel Word Perfect 8 for Linux creates a temporary working directory with world-writable permissions, which allows local users to (1) modify Word Perfect behavior by modifying files in the working directory, or (2) modify files of other users via a symlin... Read more

    Affected Products : wordperfect
    • Published: Dec. 18, 1998
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-1999-0188

    The passwd command in Solaris can be subjected to a denial of service.... Read more

    Affected Products : solaris sunos
    • Published: Dec. 17, 1998
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-1999-0139

    Buffer overflow in Solaris x86 mkcookie allows local users to obtain root access.... Read more

    Affected Products : solaris sunos
    • Published: Dec. 12, 1998
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-1999-1282

    RealSystem G2 server stores the administrator password in cleartext in a world-readable configuration file, which allows local users to gain privileges.... Read more

    Affected Products : realsystem_g2_server
    • Published: Dec. 10, 1998
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-1999-1276

    fte-console in the fte package before 0.46b-4.1 does not drop root privileges, which allows local users to gain root access via the virtual console device.... Read more

    Affected Products : linux_kernel debian_linux
    • Published: Dec. 07, 1998
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-1999-1147

    Buffer overflow in Platinum Policy Compliance Manager (PCM) 7.0 allows remote attackers to execute arbitrary commands via a long string to the Agent port (1827), which is handled by smaxagent.exe.... Read more

    Affected Products : policy_compliance_manager
    • Published: Dec. 04, 1998
    • Modified: Apr. 03, 2025
Showing 20 of 293606 Results