Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 5.0

    MEDIUM
    CVE-2000-0054

    search.cgi in the SolutionScripts Home Free package allows remote attackers to view directories via a .. (dot dot) attack.... Read more

    Affected Products : home_free
    • Published: Jan. 03, 1999
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-1999-0914

    Buffer overflow in the FTP client in the Debian GNU/Linux netstd package.... Read more

    Affected Products : debian_linux
    • Published: Jan. 03, 1999
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2000-0005

    HP-UX aserver program allows local users to gain privileges via a symlink attack.... Read more

    Affected Products : hp-ux aserver 9000
    • Published: Jan. 02, 1999
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-1999-1170

    IPswitch IMail allows local users to gain additional privileges and modify or add mail accounts by setting the "flags" registry key to 1920.... Read more

    Affected Products : imail ws_ftp_server
    • Published: Jan. 02, 1999
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-1999-1422

    The default configuration of Slackware 3.4, and possibly other versions, includes . (dot, the current directory) in the PATH environmental variable, which could allow local users to create Trojan horse programs that are inadvertently executed by other use... Read more

    Affected Products : slackware_linux
    • Published: Jan. 02, 1999
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-1999-0402

    wget 1.5.3 follows symlinks to change permissions of the target file instead of the symlink itself.... Read more

    Affected Products : wget
    • Published: Jan. 02, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0601

    A network intrusion detection system (IDS) does not properly handle data within TCP handshake packets.... Read more

    Affected Products :
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0663

    A system-critical program, library, or file has a checksum or other integrity measurement that indicates that it has been modified.... Read more

    Affected Products :
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0465

    Remote attackers can crash Lynx and Internet Explorer using an IMG tag with a large width parameter.... Read more

    Affected Products :
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0577

    A Windows NT system's file audit policy does not log an event success or failure for non-critical files or directories.... Read more

    Affected Products : windows_nt
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0364

    Microsoft Access 97 stores a database password as plaintext in a foreign mdb, allowing access to data.... Read more

    Affected Products : access total_vb_sourcebook
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-1999-0549

    Windows NT automatically logs in an administrator upon rebooting.... Read more

    Affected Products : windows_nt
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0581

    The HKEY_CLASSES_ROOT key in a Windows NT system has inappropriate, system-critical permissions.... Read more

    Affected Products : windows_nt
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 0.0

    NONE
    CVE-1999-0523

    ICMP echo (ping) is allowed from arbitrary hosts.... Read more

    Affected Products :
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0570

    Windows NT is not using a password filter utility, e.g. PASSFILT.DLL.... Read more

    Affected Products : windows_nt
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0594

    A Windows NT system does not restrict access to removable media drives such as a floppy disk drive or CDROM drive.... Read more

    Affected Products :
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0597

    A Windows NT account policy does not forcibly disconnect remote users from the server when their logon hours expire.... Read more

    Affected Products :
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0286

    In some NT web servers, appending a space at the end of a URL may allow attackers to read source code for active pages.... Read more

    Affected Products :
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-1999-0448

    IIS 4.0 and Apache log HTTP request methods, regardless of how long they are, allowing a remote attacker to hide the URL they really request.... Read more

    Affected Products : internet_information_server
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0495

    A remote attacker can gain access to a file system using .. (dot dot) when accessing SMB shares.... Read more

    Affected Products :
    • Published: Jan. 01, 1999
    • Modified: Apr. 03, 2025
Showing 20 of 294357 Results