Vulnerabilities > Linuxfoundation > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-09-02 | CVE-2024-20084 | Out-of-bounds Read vulnerability in multiple products In power, there is a possible out of bounds read due to a missing bounds check. | 4.4 |
| 2024-09-02 | CVE-2024-20085 | Out-of-bounds Read vulnerability in multiple products In power, there is a possible out of bounds read due to a missing bounds check. | 4.4 |
| 2024-08-02 | CVE-2024-22278 | Unspecified vulnerability in Linuxfoundation Harbor Incorrect user permission validation in Harbor <v2.9.5 and Harbor <v2.10.3 allows authenticated users to modify configurations. | 4.3 |
| 2024-01-04 | CVE-2023-6944 | Information Exposure Through an Error Message vulnerability in multiple products A flaw was found in the Red Hat Developer Hub (RHDH). | 5.7 |
| 2024-01-03 | CVE-2023-46739 | Information Exposure Through Discrepancy vulnerability in Linuxfoundation Cubefs CubeFS is an open-source cloud-native file storage system. | 5.9 |
| 2024-01-03 | CVE-2023-46742 | Information Exposure Through Log Files vulnerability in Linuxfoundation Cubefs CubeFS is an open-source cloud-native file storage system. | 6.5 |
| 2024-01-03 | CVE-2023-46738 | Allocation of Resources Without Limits or Throttling vulnerability in Linuxfoundation Cubefs CubeFS is an open-source cloud-native file storage system. | 6.5 |
| 2023-12-04 | CVE-2023-32855 | Missing Authorization vulnerability in multiple products In aee, there is a possible escalation of privilege due to a missing permission check. | 6.7 |
| 2023-11-09 | CVE-2023-20902 | Race Condition vulnerability in Linuxfoundation Harbor A timing condition in Harbor 2.6.x and below, Harbor 2.7.2 and below, Harbor 2.8.2 and below, and Harbor 1.10.17 and below allows an attacker with network access to create jobs/stop job tasks and retrieve job task information. | 6.5 |
| 2023-10-30 | CVE-2023-47090 | Incorrect Authorization vulnerability in Linuxfoundation Nats-Server NATS nats-server before 2.9.23 and 2.10.x before 2.10.2 has an authentication bypass. | 6.5 |