| Page(s) : 1 ... 29 30 31 32 33 34 35 36 37 38 [39] 40 41 42 43 44 45 46 47 48 49 ... | Result(s) : 8822 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 3.3 | 2023-09-06 | CVE-2023-38605 | cve | This issue was addressed with improved redaction of sensitive information. This issue is fixed in macOS Ventura 13.5. An app may be able to determine a user’s current location. |
| 3.3 | 2023-09-06 | CVE-2023-40392 | cve | A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Ventura 13.5. An app may be able to read sensitive location info... |
| 3.3 | 2023-09-06 | CVE-2023-41053 | cve | Redis is an in-memory database that persists on disk. Redis does not correctly identify keys accessed by `SORT_RO` and as a result may grant users executing this command access ... |
| 3.5 | 2023-09-06 | CVE-2023-41946 | cve | A cross-site request forgery (CSRF) vulnerability in Jenkins Frugal Testing Plugin 1.1 and earlier allows attackers to connect to Frugal Testing using attacker-specified credent... |
| 3.3 | 2023-09-06 | CVE-2023-28195 | cve | A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Ventura 13.3. An app may be able to read sensitive location info... |
| 3.3 | 2023-09-06 | CVE-2023-30711 | cve | Improper authentication in Phone and Messaging Storage SMR SEP-2023 Release 1 allows attacker to insert arbitrary data to the provider. |
| 3.3 | 2023-09-06 | CVE-2023-30715 | cve | Improper access control vulnerability in Weather prior to SMR Sep-2023 Release 1 allows attackers to access location information set in Weather without permission. |
| 3.3 | 2023-09-06 | CVE-2023-30717 | cve | Sensitive information exposure vulnerability in SVCAgent prior to SMR Sep-2023 Release 1 allows attackers to get unresettable identifiers. |
| 3.3 | 2023-09-06 | CVE-2023-30718 | cve | Improper export of android application components vulnerability in WifiApAutoHotspotEnablingActivity prior to SMR Sep-2023 Release 1 allows local attacker to change a Auto Hotsp... |
| 3.3 | 2023-09-06 | CVE-2023-30719 | cve | Exposure of Sensitive Information vulnerability in InboundSmsHandler prior to SMR Sep-2023 Release 1 allows local attackers to access certain message data. |
| 3.3 | 2023-09-06 | CVE-2023-30724 | cve | Improper authentication in GallerySearchProvider of Gallery prior to version 14.5.01.2 allows attacker to access search history. |
| 2.7 | 2023-09-04 | CVE-2023-4216 | cve | The Orders Tracking for WooCommerce WordPress plugin before 1.2.6 doesn't validate the file_url parameter when importing a CSV file, allowing high privilege users with the ... |
| 3.1 | 2023-09-01 | CVE-2023-4709 | cve | A vulnerability classified as problematic has been found in TOTVS RM 12.1. Affected is an unknown function of the file Login.aspx of the component Portal. The manipulation of th... |
| 3.8 | 2023-09-01 | CVE-2023-3950 | cve | An information disclosure issue in GitLab EE affecting all versions from 16.2 prior to 16.2.5, and 16.3 prior to 16.3.1 allowed other Group Owners to see the Public Key for a Go... |
| 3.8 | 2023-08-31 | CVE-2023-41044 | cve | Graylog is a free and open log management platform. A partial path traversal vulnerability exists in Graylog's `Support Bundle` feature. The vulnerability is caused by inco... |
| 3.3 | 2023-08-31 | CVE-2023-33833 | cve | IBM Security Verify Information Queue 10.0.4 and 10.0.5 stores sensitive information in plain clear text which can be read by a local user. IBM X-Force ID: 256013. |
| 3.5 | 2023-08-31 | CVE-2023-4654 | cve | Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository instantsoft/icms2 prior to 2.16.1. |
| 3.1 | 2023-08-30 | CVE-2023-41041 | cve | Graylog is a free and open log management platform. In a multi-node Graylog cluster, after a user has explicitly logged out, a user session may still be used for API requests un... |
| 2.4 | 2023-08-30 | CVE-2023-4624 | cve | Server-Side Request Forgery (SSRF) in GitHub repository bookstackapp/bookstack prior to v23.08. |
| 3.7 | 2023-08-29 | CVE-2023-0654 | cve | Due to a misconfiguration, the WARP Mobile Client (< 6.29) for Android was susceptible to a tapjacking attack. In the event that an attacker built a malicious application and ma... |
| Page(s) : 1 ... 29 30 31 32 33 34 35 36 37 38 [39] 40 41 42 43 44 45 46 47 48 49 ... | Result(s) : 8822 |
