Vulnerabilities > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-17 | CVE-2023-0657 | A flaw was found in Keycloak. high complexity CWE-273 | 3.4 |
| 2024-11-12 | CVE-2024-10672 | Path Traversal vulnerability in Themeisle multiple Page Generator The Multiple Page Generator Plugin – MPG plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the mpg_upsert_project_source_block() function in all versions up to, and including, 4.0.2. | 2.7 |
| 2024-11-12 | CVE-2024-48838 | Files or Directories Accessible to External Parties vulnerability in Dell Smartfabric Os10 Dell SmartFabric OS10 Software, version(s) 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contain(s) a Files or Directories Accessible to External Parties vulnerability. | 3.3 |
| 2024-11-08 | CVE-2024-50211 | Unspecified vulnerability in Linux Kernel In the Linux kernel, the following vulnerability has been resolved: udf: refactor inode_bmap() to handle error Refactor inode_bmap() to handle error since udf_next_aext() can return error now. | 3.3 |
| 2024-11-06 | CVE-2024-34677 | Insecure Storage of Sensitive Information vulnerability in Samsung Android 12.0/13.0/14.0 Exposure of sensitive information in System UI prior to SMR Nov-2024 Release 1 allow local attackers to make malicious apps appear as legitimate. | 3.3 |
| 2024-11-06 | CVE-2024-34682 | Unspecified vulnerability in Samsung Android 14.0 Improper authorization in Settings prior to SMR Nov-2024 Release 1 allows physical attackers to access stored WiFi password in Maintenance Mode. low complexity samsung | 2.4 |
| 2024-11-05 | CVE-2024-50092 | Unspecified vulnerability in Linux Kernel In the Linux kernel, the following vulnerability has been resolved: net: netconsole: fix wrong warning A warning is triggered when there is insufficient space in the buffer for userdata. | 3.3 |
| 2024-10-29 | CVE-2024-10228 | Incorrect Permission Assignment for Critical Resource vulnerability in Hashicorp Vagrant VMWare Utility The Vagrant VMWare Utility Windows installer targeted a custom location with a non-protected path that could be modified by an unprivileged user, introducing potential for unauthorized file system writes. | 3.3 |
| 2024-10-29 | CVE-2024-10452 | Authorization Bypass Through User-Controlled Key vulnerability in Grafana 10.4.0 Organization admins can delete pending invites created in an organization they are not part of. | 2.7 |
| 2024-10-29 | CVE-2024-48921 | Incorrect Authorization vulnerability in Nirmata Kyverno Kyverno is a policy engine designed for Kubernetes. | 2.7 |