CVE alerts
60 alerts in this category.
Threat alerts that map to a registered CVE entry. Each carries severity, exploitation status, affected products, and a direct path to the vendor patch.
Copy Fail (CVE-2026-31431): Inside Linux's New Page-Cache Bug
Vulnios' investigation into Copy Fail (CVE-2026-31431), the new Linux kernel page-cache vulnerability. Technical analysis, blast radius, mitigation playbook.
High Vulnerability: CVE-2004-0210 — microsoft — interix, windows_2000
The POSIX component of Microsoft Windows NT and Windows 2000 allows local users to execute arbitrary code via certain parameters, possibly by modifying message length values and causing a buffer overf
microsoftCVE-2004-0210Critical Vulnerability: CVE-2004-0772 — mit, openpkg — kerberos_5, openpkg
Double free vulnerabilities in error handling code in krb524d for MIT Kerberos 5 (krb5) 1.2.8 and earlier may allow remote attackers to execute arbitrary code.
mit, openpkgCVE-2004-0772Critical Vulnerability: CVE-2004-1363 — oracle — application_server, collaboration_suite
Buffer overflow in extproc in Oracle 10g allows remote attackers to execute arbitrary code via environment variables in the library name, which are expanded after the length check is performed.
oracleCVE-2004-1363Critical Vulnerability: CVE-2004-2061 — risearch — risearch, risearch_pro
RiSearch 1.0.01 and RiSearch Pro 3.2.06 allows remote attackers to use the show.pl script as an open proxy, or read arbitrary local files, by setting the url parameter to a (1) http://, (2) ftp://, or
risearchCVE-2004-2061Critical Vulnerability: CVE-2004-0434 — heimdal_project, debian — heimdal, debian_linux
k5admind (kadmind) for Heimdal allows remote attackers to execute arbitrary code via a Kerberos 4 compatibility administration request whose framing length is less than 2, which leads to a heap-based
heimdal_project, debianCVE-2004-0434Critical Vulnerability: CVE-2004-0005 — gaim_project — gaim
Multiple buffer overflows in Gaim 0.75 allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) octal encoding in yahoo_decode that causes a null byte to be writ
gaim_projectCVE-2004-0005Critical Vulnerability: CVE-2004-0030 — phpgedview — phpgedview
PHP remote file inclusion vulnerability in (1) functions.php, (2) authentication_index.php, and (3) config_gedcom.php for PHPGEDVIEW 2.61 allows remote attackers to execute arbitrary PHP code by modif
phpgedviewCVE-2004-0030Critical Vulnerability: CVE-2003-1233 — pedestalsoftware — integrity_protection_driver
Pedestal Software Integrity Protection Driver (IPD) 1.3 and earlier allows privileged attackers, such as rootkits, to bypass file access restrictions to the Windows kernel by using the NtCreateSymboli
pedestalsoftwareCVE-2003-1233Critical Vulnerability: CVE-2003-0899 — acme — thttpd
Buffer overflow in defang in libhttpd.c for thttpd 2.21 to 2.23b1 allows remote attackers to execute arbitrary code via requests that contain '<' or '>' characters, which trigger the overflow when the
acmeCVE-2003-0899Critical Vulnerability: CVE-2003-0791 — mozilla, sco — mozilla, openserver
The Script.prototype.freeze/thaw functionality in Mozilla 1.4 and earlier allows attackers to execute native methods by modifying the string used as input to the script.thaw JavaScript function, which
mozilla, scoCVE-2003-0791Critical Vulnerability: CVE-2003-0545 — openssl — openssl
Double free vulnerability in OpenSSL 0.9.7 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an SSL client certificate with a certain invalid ASN.1 e
opensslCVE-2003-0545Critical Vulnerability: CVE-2003-0466 — redhat, wuftpd — wu_ftpd, wu-ftpd
Off-by-one error in the fb_realpath() function, as derived from the realpath function in BSD, may allow attackers to execute arbitrary code, as demonstrated in wu-ftpd 2.5.0 through 2.6.2 via commands
redhat, wuftpdCVE-2003-0466Critical Vulnerability: CVE-2003-0252 — linux-nfs — nfs-utils
Off-by-one error in the xlog function of mountd in the Linux NFS utils package (nfs-utils) before 1.0.4 allows remote attackers to cause a denial of service and possibly execute arbitrary code via cer
linux-nfsCVE-2003-0252Critical Vulnerability: CVE-2003-0356 — ethereal — ethereal
Multiple off-by-one vulnerabilities in Ethereal 0.9.11 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via the (1) AIM, (2) GIOP Gryphon, (3) OSPF,
etherealCVE-2003-0356Critical Vulnerability: CVE-2003-0174 — sgi — irix
The LDAP name service (nsd) in IRIX 6.5.19 and earlier does not properly verify if the USERPASSWORD attribute has been provided by an LDAP server, which could allow attackers to log in without a passw
sgiCVE-2003-0174Critical Vulnerability: CVE-2002-1484 — siemens — db4web
DB4Web server, when configured to use verbose debug messages, allows remote attackers to use DB4Web as a proxy and attempt TCP connections to other systems (port scan) via a request for a URL that spe
siemensCVE-2002-1484Critical Vulnerability: CVE-2002-2119 — novell — edirectory
Novell eDirectory 8.6.2 and 8.7 use case insensitive passwords, which makes it easier for remote attackers to conduct brute force password guessing.
novellCVE-2002-2119Critical Vulnerability: CVE-2002-1798 — midicart — midicart_php, midicart_php_maxi
MidiCart PHP, PHP Plus, and PHP Maxi allows remote attackers to (1) upload arbitrary php files via a direct request to admin/upload.php or (2) access sensitive information via a direct request to admi
midicartCVE-2002-1798Critical Vulnerability: CVE-2002-1820 — ultimate_php_board_project — ultimate_php_board
register.php in Ultimate PHP Board (UPB) 1.0 and 1.0b uses an administrative account Admin with a capital "A," but allows a remote attacker to impersonate the administrator by registering an account n
ultimate_php_board_projectCVE-2002-1820Critical Vulnerability: CVE-2002-1816 — redshift — atphttpd
Off-by-one buffer overflow in the sock_gets function in sockhelp.c for ATPhttpd 0.4b and earlier allows remote attackers to execute arbitrary code via a long HTTP GET request.
redshiftCVE-2002-1816Critical Vulnerability: CVE-2002-1347 — cyrusimap, apple — cyrus_sasl, mac_os_x
Multiple buffer overflows in Cyrus SASL library 2.1.9 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) long inputs during user name canonical
cyrusimap, appleCVE-2002-1347High Vulnerability: CVE-2002-0367 — microsoft — windows_2000, windows_nt
smss.exe debugging subsystem in Windows NT and Windows 2000 does not properly authenticate programs that connect to other programs, which allows local users to gain administrator or SYSTEM privileges
microsoftCVE-2002-0367Critical Vulnerability: CVE-2002-0391 — freebsd, openbsd — freebsd, openbsd
Integer overflow in xdr_array function in RPC servers for operating systems that use libc, glibc, or other code based on SunRPC including dietlibc, allows remote attackers to execute arbitrary code by
freebsd, openbsdCVE-2002-0391Critical Vulnerability: CVE-2002-0671 — pingtel — xpressa_firmware, xpressa
Pingtel xpressa SIP-based voice-over-IP phone 1.2.5 through 1.2.7.4 downloads phone applications from a web site but can not verify the integrity of the applications, which could allow remote attacker
pingtelCVE-2002-0671Critical Vulnerability: CVE-2002-0639 — openbsd — openssh
Integer overflow in sshd in OpenSSH 2.9.9 through 3.3 allows remote attackers to execute arbitrary code during challenge response authentication (ChallengeResponseAuthentication) when OpenSSH is using
openbsdCVE-2002-0639Critical Vulnerability: CVE-2002-0059 — zlib — zlib
The decompression algorithm in zlib 1.1.3 and earlier, as used in many different utilities and packages, causes inflateEnd to release certain memory more than once (a "double free"), which may allow l
zlibCVE-2002-0059Critical Vulnerability: CVE-2002-0083 — immunix, mandrakesoft — immunix, mandrake_single_network_firewall
Off-by-one error in the channel code of OpenSSH 2.0 through 3.0.2 allows local users or remote malicious servers to gain privileges.
immunix, mandrakesoftCVE-2002-0083Critical Vulnerability: CVE-2001-1496 — acme — thttpd
Off-by-one buffer overflow in Basic Authentication in Acme Labs thttpd 1.95 through 2.20 allows remote attackers to cause a denial of service and possibly execute arbitrary code.
acmeCVE-2001-1496Critical Vulnerability: CVE-2001-1481 — xitami — xitami
Xitami 2.4 through 2.5 b4 stores the Administrator password in plaintext in the default.aut file, whose default permissions are world-readable, which allows remote attackers to gain privileges.
xitamiCVE-2001-1481Critical Vulnerability: CVE-2001-0766 — apache, apple — http_server, mac_os_x
Apache on MacOS X Client 10.0.3 with the HFS+ file system allows remote attackers to bypass access restrictions via a URL that contains some characters whose case is not matched by Apache's filters.
apache, appleCVE-2001-0766Critical Vulnerability: CVE-2001-1125 — symantec — liveupdate
Symantec LiveUpdate before 1.6 does not use cryptography to ensure the integrity of download files, which allows remote attackers to execute arbitrary code via DNS spoofing of the update.symantec.com
symantecCVE-2001-1125Critical Vulnerability: CVE-2001-1155 — freebsd — freebsd
TCP Wrappers (tcp_wrappers) in FreeBSD 4.1.1 through 4.3 with the PARANOID ACL option enabled does not properly check the result of a reverse DNS lookup, which could allow remote attackers to bypass i
freebsdCVE-2001-1155Critical Vulnerability: CVE-2001-0967 — arkeia — arkeia
Knox Arkeia server 4.2, and possibly other versions, uses a constant salt when encrypting passwords using the crypt() function, which makes it easier for an attacker to conduct brute force password gu
arkeiaCVE-2001-0967Critical Vulnerability: CVE-2001-0609 — infodrom — cfingerd
Format string vulnerability in Infodrom cfingerd 1.4.3 and earlier allows a remote attacker to gain additional privileges via a malformed ident reply that is passed to the syslog function.
infodromCVE-2001-0609Critical Vulnerability: CVE-2001-1291 — 3com — superstack_ii_ps_hub_40_firmware, superstack_ii_ps_hub_40
The telnet server for 3Com hardware such as PS40 SuperStack II does not delay or disconnect remote attackers who provide an incorrect username or password, which makes it easier to break into the serv
3comCVE-2001-1291Critical Vulnerability: CVE-2001-0395 — lightwavemo — consoleserver_3200_firmware, consoleserver_3200
Lightwave ConsoleServer 3200 does not disconnect users after unsuccessful login attempts, which could allow remote attackers to conduct brute force password guessing.
lightwavemoCVE-2001-0395Critical Vulnerability: CVE-2001-0248 — hp, sgi — hp-ux, irix
Buffer overflow in FTP server in HPUX 11 allows remote attackers to execute arbitrary commands by creating a long pathname and calling the STAT command, which uses glob to generate long strings.
hp, sgiCVE-2001-0248Critical Vulnerability: CVE-2001-0249 — hp, oracle — hp-ux, solaris
Heap overflow in FTP daemon in Solaris 8 allows remote attackers to execute arbitrary commands by creating a long pathname and calling the LIST command, which uses glob to generate long strings.
hp, oracleCVE-2001-0249Critical Vulnerability: CVE-2001-1339 — anybus — ipc\@chip_firmware, ipc\@chip
Beck IPC GmbH IPC@CHIP telnet service does not delay or disconnect users from the service when bad passwords are entered, which makes it easier for remote attackers to conduct brute force password gue
anybusCVE-2001-1339Critical Vulnerability: CVE-2000-0944 — cgi — script_center_news_update
CGI Script Center News Update 1.1 does not properly validate the original news administration password during a password change operation, which allows remote attackers to modify the password without
cgiCVE-2000-0944Critical Vulnerability: CVE-2000-1218 — microsoft — windows_2000, windows_98
The default configuration for the domain name resolver for Microsoft Windows 98, NT 4.0, 2000, and XP sets the QueryIpMatching parameter to 0, which causes Windows to accept DNS updates from hosts tha
microsoftCVE-2000-1218Critical Vulnerability: CVE-1999-1324 — hp — openvms_vax
VAXstations running Open VMS 5.3 through 5.5-2 with VMS DECwindows or MOTIF do not properly disable access to user accounts that exceed the break-in limit threshold for failed login attempts, which ma
hpCVE-1999-1324Critical Vulnerability: CVE-1999-1588 — sun — solaris
Buffer overflow in nlps_server in Sun Solaris x86 2.4, 2.5, and 2.5.1 allows remote attackers to execute arbitrary code as root via a long string beginning with "NLPS:002:002:" to the listen (aka Syst
sunCVE-1999-1588Critical Vulnerability: CVE-1999-0426 — suse — suse_linux
The default permissions of /dev/kmem in Linux versions before 2.0.36 allows IP spoofing.
suseCVE-1999-0426Critical Vulnerability: CVE-1999-0006 — qualcomm — qpopper
Buffer overflow in POP servers based on BSD/Qualcomm's qpopper allows remote attackers to gain root access using a long PASS command.
qualcommCVE-1999-0006Critical Vulnerability: CVE-1999-0043 — isc, netscape — inn, news_server
Command execution via shell metachars in INN daemon (innd) 1.5 using "newgroup" and "rmgroup" control messages, and others.
isc, netscapeCVE-1999-0043Critical Vulnerability: CVE-1999-0066 — john_s._roberts — anyform
AnyForm CGI remote execution.
john_s._robertsCVE-1999-0066Critical Vulnerability: CVE-2026-33439 — openidentityplatform — openam
Open Access Management (OpenAM) is an access management solution. Prior to 16.0.6, OpenIdentityPlatform OpenAM is vulnerable to pre-authentication Remote Code Execution (RCE) via unsafe Java deseriali
openidentityplatformCVE-2026-33439Critical Vulnerability: CVE-2026-6388
A flaw was found in ArgoCD Image Updater. This vulnerability allows an attacker, with permissions to create or modify an ImageUpdater resource in a multi-tenant environment, to bypass namespace bounda
CVE-2026-6388Critical Vulnerability: CVE-2026-6296
Heap buffer overflow in ANGLE in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)
CVE-2026-6296Critical Vulnerability: CVE-2018-1000301 — debian, canonical — debian_linux, ubuntu_linux
curl version curl 7.20.0 to and including curl 7.59.0 contains a CWE-126: Buffer Over-read vulnerability in denial of service that can result in curl can be tricked into reading data beyond the end of
debian, canonicalCVE-2018-1000301Critical Vulnerability: CVE-2017-1000257 — haxx, debian — libcurl, debian_linux
An IMAP FETCH response line indicates the size of the returned data, in number of bytes. When that response says the data is zero bytes, libcurl would pass on that (non-existing) data with a pointer a
haxx, debianCVE-2017-1000257Critical Vulnerability: CVE-2019-5482 — haxx, fedoraproject — curl, fedora
Heap buffer overflow in the TFTP protocol handler in cURL 7.19.4 to 7.65.3.
haxx, fedoraprojectCVE-2019-5482Critical Vulnerability: CVE-2017-8817 — haxx, debian — curl, libcurl
The FTP wildcard function in curl and libcurl before 7.57.0 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) or possibly have unspecified other impact vi
haxx, debianCVE-2017-8817Critical Vulnerability: CVE-2017-8816 — haxx, debian — curl, libcurl
The NTLM authentication feature in curl and libcurl before 7.57.0 on 32-bit platforms allows attackers to cause a denial of service (integer overflow and resultant buffer overflow, and application cra
haxx, debianCVE-2017-8816Critical Vulnerability: CVE-2026-40173
Dgraph is an open source distributed GraphQL database. Versions 25.3.1 and prior contain an unauthenticated credential disclosure vulnerability where the /debug/pprof/cmdline endpoint is registered on
CVE-2026-40173Critical Vulnerability: CVE-2026-39324 — rack — rack-session
Rack::Session is a session management implementation for Rack. From 2.0.0 to before 2.1.2, Rack::Session::Cookie incorrectly handles decryption failures when configured with secrets:. If cookie decryp
rackCVE-2026-39324Critical Vulnerability: CVE-2026-39397 — delmaredigital — payload-puck
@delmaredigital/payload-puck is a PayloadCMS plugin for integrating Puck visual page builder. Prior to 0.6.23, all /api/puck/* CRUD endpoint handlers registered by createPuckPlugin() called Payload's
delmaredigitalCVE-2026-39397Critical Vulnerability: CVE-2025-41118
Pyroscope is an open-source continuous profiling database. The database supports various storage backends, including Tencent Cloud Object Storage (COS). If the database is configured to use Tencent C
CVE-2025-41118
Get alerts that match YOUR environment
This page shows everything in the category. Vulnios narrows it down to alerts that affect your actual asset inventory — only the CVEs you need to act on.
Start a free scan