Vulnerabilities

DATE CVE VULNERABILITY TITLE RISK
2023-03-27 CVE-2023-25908 Adobe Photoshop versions 23.5.3 (and earlier) and 24.1.1 (and earlier) are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user.
local
low complexity
CWE-416
7.8
7.8
2023-03-27 CVE-2022-47924 An high privileged attacker may pass crafted arguments to the validate function of csaf-validator-lib of a locally installed Secvisogram in versions < 0.1.0 wich can result in arbitrary code execution and DoS once the users triggers the validation.
local
low complexity
CWE-20
6.5
6.5
2023-03-27 CVE-2022-47925 The validate JSON endpoint of the Secvisogram csaf-validator-service in versions < 0.1.0 processes tests with unexpected names.
network
low complexity
CWE-20
5.3
5.3
2023-03-27 CVE-2022-39043 Juiker app stores debug logs which contains sensitive information to mobile external storage.
low complexity
CWE-200
2.4
2.4
2023-03-27 CVE-2023-22902 Openfind Mail2000 file uploading function has insufficient filtering for user input.
network
low complexity
CWE-79
5.4
5.4
2023-03-27 CVE-2023-24834 WisdomGarden Tronclass has improper access control when uploading file.
network
low complexity
CWE-639
6.5
6.5
2023-03-27 CVE-2023-24835 Softnext Technologies Corp.’s SPAM SQR has a vulnerability of Code Injection within its specific function.
network
low complexity
CWE-94
7.2
7.2
2023-03-27 CVE-2023-24837 HGiga PowerStation remote management function has insufficient filtering for user input.
network
low complexity
CWE-78
8.8
8.8
2023-03-27 CVE-2023-24838 HGiga PowerStation has a vulnerability of Information Leakage.
network
low complexity
CWE-200
critical
 9.8
9.8
2023-03-27 CVE-2023-24839 HGiga MailSherlock’s specific function has insufficient filtering for user input.
network
low complexity
CWE-79
6.1
6.1