Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.

Latest Critical Actively Exploited Remotely Exploitable

4.8

MEDIUM

CVE-2024-45960

Zenario 9.7.61188 allows authenticated admin users to upload PDF files containing malicious code into the target system. If the PDF file is accessed through the website, it can trigger a Cross Site Scripting (XSS) attack....

Affected Products : zenario
Published: Oct. 02, 2024

Modified: Jul. 03, 2025
6.1

MEDIUM

CVE-2024-43795

OpenC3 COSMOS provides the functionality needed to send commands to and receive data from one or more embedded systems. The login functionality contains a reflected cross-site scripting (XSS) vulnerability. This vulnerability is fixed in 5.19.0. Note: Thi...

Affected Products : cosmos
Published: Oct. 02, 2024

Modified: Oct. 31, 2024
9.8

CRITICAL

CVE-2024-9441

The Linear eMerge e3-Series through version 1.00-07 is vulnerable to an OS command injection vulnerability. A remote and unauthenticated attacker can execute arbitrary OS commands via the login_id parameter when invoking the forgot_password functionality ...

Affected Products : emerge_e3_firmware
Published: Oct. 02, 2024

Modified: Oct. 04, 2024
6.1

MEDIUM

CVE-2024-9440

Slim Select 2.0 versions through 2.9.0 are affected by a potential cross-site scripting vulnerability. In select.ts:createOption(), the text variable from the user-provided Options object is assigned to an innerHTML without sanitation. Software that depen...

Affected Products : slim_select
Published: Oct. 02, 2024

Modified: Nov. 13, 2024
9.8

CRITICAL

CVE-2024-24116

An issue in Ruijie RG-NBS2009G-P RGOS v.10.4(1)P2 Release(9736) allows a remote attacker to gain privileges via the system/config_menu.htm....

Affected Products : rg-nbs2009g-p_firmware rg-nbs2009g-p
Published: Oct. 02, 2024

Modified: Feb. 10, 2025
5.8

MEDIUM

CVE-2024-20513

A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices could allow an unauthenticated, remote attacker to cause a DoS condition for targeted users of the AnyConnect service on an affected...

Affected Products : meraki_mx64_firmware meraki_mx64w_firmware meraki_mx67_firmware meraki_mx67c_firmware meraki_mx67w_firmware meraki_mx68_firmware meraki_mx68cw_firmware meraki_mx68w_firmware meraki_mx100_firmware meraki_mx84_firmware +40 more products
Published: Oct. 02, 2024

Modified: Jun. 04, 2025
5.9

MEDIUM

CVE-2024-20509

A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices could allow an unauthenticated, remote attacker to hijack an AnyConnect VPN session or cause a denial of service (DoS) condition for...

Affected Products : meraki_mx64_firmware meraki_mx64w_firmware meraki_mx67_firmware meraki_mx67c_firmware meraki_mx67w_firmware meraki_mx68_firmware meraki_mx68cw_firmware meraki_mx68w_firmware meraki_mx100_firmware meraki_mx84_firmware +40 more products
Published: Oct. 02, 2024

Modified: Jun. 04, 2025
7.5

HIGH

CVE-2024-20502

A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices could allow an unauthenticated, remote attacker to cause a DoS condition on an affected device. This vulnerability is due to insu...

Affected Products : meraki_mx64_firmware meraki_mx64w_firmware meraki_mx67_firmware meraki_mx67c_firmware meraki_mx67w_firmware meraki_mx68_firmware meraki_mx68cw_firmware meraki_mx68w_firmware meraki_mx100_firmware meraki_mx84_firmware +40 more products
Published: Oct. 02, 2024

Modified: Jun. 04, 2025
8.6

HIGH

CVE-2024-20501

Multiple vulnerabilities in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices could allow an unauthenticated, remote attacker to cause a DoS condition in the AnyConnect service on an affected device. ...

Affected Products : meraki_mx64_firmware meraki_mx64w_firmware meraki_mx67_firmware meraki_mx67c_firmware meraki_mx67w_firmware meraki_mx68_firmware meraki_mx68cw_firmware meraki_mx68w_firmware meraki_mx100_firmware meraki_mx84_firmware +40 more products
Published: Oct. 02, 2024

Modified: Jun. 04, 2025
7.5

HIGH

CVE-2024-20500

A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices could allow an unauthenticated, remote attacker to cause a DoS condition in the AnyConnect service on an affected device. This vu...

Affected Products : meraki_mx64_firmware meraki_mx64w_firmware meraki_mx67_firmware meraki_mx67c_firmware meraki_mx67w_firmware meraki_mx68_firmware meraki_mx68cw_firmware meraki_mx68w_firmware meraki_mx100_firmware meraki_mx84_firmware +40 more products
Published: Oct. 02, 2024

Modified: Jun. 04, 2025
8.6

HIGH

CVE-2024-20499

Multiple vulnerabilities in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices could allow an unauthenticated, remote attacker to cause a DoS condition in the AnyConnect service on an affected device. ...

Affected Products : meraki_mx64_firmware meraki_mx64w_firmware meraki_mx67_firmware meraki_mx67c_firmware meraki_mx67w_firmware meraki_mx68_firmware meraki_mx68cw_firmware meraki_mx68w_firmware meraki_mx100_firmware meraki_mx84_firmware +40 more products
Published: Oct. 02, 2024

Modified: Jun. 04, 2025
8.6

HIGH

CVE-2024-20498

Multiple vulnerabilities in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices could allow an unauthenticated, remote attacker to cause a DoS condition in the AnyConnect service on an affected device. ...

Affected Products : meraki_mx64_firmware meraki_mx64w_firmware meraki_mx67_firmware meraki_mx67c_firmware meraki_mx67w_firmware meraki_mx68_firmware meraki_mx68cw_firmware meraki_mx68w_firmware meraki_mx100_firmware meraki_mx84_firmware +40 more products
Published: Oct. 02, 2024

Modified: Jun. 04, 2025
9.8

CRITICAL

CVE-2024-24122

A remote code execution vulnerability in the project management of Wanxing Technology's Yitu project which allows an attacker to use the exp.adpx file as a zip compressed file to construct a special file name, which can be used to decompress the project f...

Affected Products : edraw
Published: Oct. 02, 2024

Modified: Nov. 21, 2024
8.8

HIGH

CVE-2024-46626

OS4ED openSIS-Classic v9.1 was discovered to contain a SQL injection vulnerability via a crafted payload....

Affected Products : opensis
Published: Oct. 02, 2024

Modified: Jul. 17, 2025
8.1

HIGH

CVE-2024-41290

FlatPress CMS v1.3.1 1.3 was discovered to use insecure methods to store authentication data via the cookie's component....

Affected Products : flatpress
Published: Oct. 02, 2024

Modified: Apr. 23, 2025
6.8

MEDIUM

CVE-2024-20524

A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G, RV320, and RV325 Routers could allow an authenticated, Administrator-level, remote attacker to cause an unexpected reload of an affected device, resulting in a de...

Affected Products : rv042_firmware rv042g_firmware rv320_firmware rv325_firmware small_business_rv_series_router_firmware rv042 rv042g rv320 rv325
Published: Oct. 02, 2024

Modified: Oct. 08, 2024
6.8

MEDIUM

CVE-2024-20523

A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G, RV320, and RV325 Routers could allow an authenticated, Administrator-level, remote attacker to cause an unexpected reload of an affected device, resulting in a de...

Affected Products : rv042_firmware rv042g_firmware rv320_firmware rv325_firmware small_business_rv_series_router_firmware rv042 rv042g rv320 rv325
Published: Oct. 02, 2024

Modified: Oct. 08, 2024
6.8

MEDIUM

CVE-2024-20522

A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G, RV320, and RV325 Routers could allow an authenticated, Administrator-level, remote attacker to cause an unexpected reload of an affected device, resulting in a de...

Affected Products : rv042_firmware rv042g_firmware rv320_firmware rv325_firmware small_business_rv_series_router_firmware rv042 rv042g rv320 rv325
Published: Oct. 02, 2024

Modified: Oct. 08, 2024
9.1

CRITICAL

CVE-2024-20521

A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G, RV320, and RV325 Routers could allow an authenticated, Administrator-level, remote attacker to execute arbitrary code as the root user. To exploit this vulnerabil...

Affected Products : rv042_firmware rv042g_firmware rv320_firmware rv325_firmware small_business_rv_series_router_firmware rv042 rv042g rv320 rv325
Published: Oct. 02, 2024

Modified: Oct. 08, 2024
9.1

CRITICAL

CVE-2024-20520

A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G, RV320, and RV325 Routers could allow an authenticated, Administrator-level, remote attacker to execute arbitrary code as the root user. To exploit this vulnerabil...

Affected Products : rv042_firmware rv042g_firmware rv320_firmware rv325_firmware small_business_rv_series_router_firmware rv042 rv042g rv320 rv325
Published: Oct. 02, 2024

Modified: Oct. 08, 2024

Showing 20 of 294863 Results

1
...
2247
2248
2249
2250
2251
2252
2253
...
14744

Browse by Apps

Latest CVE Feed

4.8

6.1

9.8

6.1

9.8

5.8

5.9

7.5

8.6

7.5

8.6

8.6

9.8

8.8

8.1

6.8

6.8

6.8

9.1

9.1

CVEFeed.io UI Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable