Vulnerabilities > Files or Directories Accessible to External Parties
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-01-10 | CVE-2022-22268 | Files or Directories Accessible to External Parties vulnerability in Google Android Incorrect implementation of Knox Guard prior to SMR Jan-2022 Release 1 allows physically proximate attackers to temporary unlock the Knox Guard via Samsung DeX mode. | 6.1 |
| 2022-01-10 | CVE-2022-22269 | Files or Directories Accessible to External Parties vulnerability in Google Android 10.0/11.0/9.0 Keeping sensitive data in unprotected BluetoothSettingsProvider prior to SMR Jan-2022 Release 1 allows untrusted applications to get a local Bluetooth MAC address. | 3.3 |
| 2022-01-10 | CVE-2022-22270 | Files or Directories Accessible to External Parties vulnerability in Google Android 10.0/11.0/9.0 An implicit Intent hijacking vulnerability in Dialer prior to SMR Jan-2022 Release 1 allows unprivileged applications to access contact information. | 3.3 |
| 2022-01-03 | CVE-2021-20148 | Files or Directories Accessible to External Parties vulnerability in Zohocorp Manageengine Adselfservice Plus ManageEngine ADSelfService Plus below build 6116 stores the password policy file for each domain under the html/ web root with a predictable filename based on the domain name. | 4.3 |
| 2021-12-16 | CVE-2021-44315 | Files or Directories Accessible to External Parties vulnerability in PHPgurukul BUS Pass Management System 1.0 In Bus Pass Management System v1.0, Directory Listing/Browsing is enabled on the web server which allows an attacker to view the sensitive files of the application, for example: Any file which contains sensitive information of the user or server. | 7.5 |
| 2021-12-14 | CVE-2021-43821 | Files or Directories Accessible to External Parties vulnerability in Apereo Opencast Opencast is an Open Source Lecture Capture & Video Management for Education. | 7.7 |
| 2021-12-08 | CVE-2021-25521 | Files or Directories Accessible to External Parties vulnerability in Samsung Internet Insecure caller check in sharevia deeplink logic prior to Samsung Internet 16.0.2 allows unstrusted applications to get current tab URL in Samsung Internet. | 3.3 |
| 2021-12-08 | CVE-2021-31850 | Files or Directories Accessible to External Parties vulnerability in Mcafee Database Security A denial-of-service vulnerability in Database Security (DBS) prior to 4.8.4 allows a remote authenticated administrator to trigger a denial-of-service attack against the DBS server. | 6.1 |
| 2021-12-03 | CVE-2021-43772 | Files or Directories Accessible to External Parties vulnerability in Trendmicro products Trend Micro Security 2021 v17.0 (Consumer) contains a vulnerability that allows files inside the protected folder to be modified without any detection. | 5.5 |
| 2021-11-08 | CVE-2021-31600 | Files or Directories Accessible to External Parties vulnerability in Hitachi products An issue was discovered in Hitachi Vantara Pentaho through 9.1 and Pentaho Business Intelligence Server through 7.x. | 4.3 |