Vulnerabilities > Low
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-12-13 | CVE-2023-6793 | Improper Privilege Management vulnerability in Paloaltonetworks Pan-Os An improper privilege management vulnerability in Palo Alto Networks PAN-OS software enables an authenticated read-only administrator to revoke active XML API keys from the firewall and disrupt XML API usage. | 2.7 |
2023-12-13 | CVE-2023-6766 | Cross-Site Request Forgery (CSRF) vulnerability in PHPgurukul Teacher Subject Allocation Management System 1.0 A vulnerability classified as problematic has been found in PHPGurukul Teacher Subject Allocation Management System 1.0. | 3.5 |
2023-12-12 | CVE-2023-48429 | Improper Check for Unusual or Exceptional Conditions vulnerability in Siemens Sinec INS 1.0 A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 2). | 2.7 |
2023-12-12 | CVE-2023-48430 | Unspecified vulnerability in Siemens Sinec INS 1.0 A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 2). | 2.7 |
2023-12-12 | CVE-2023-49578 | Unspecified vulnerability in SAP Cloud Connector 2.0 SAP Cloud Connector - version 2.0, allows an authenticated user with low privilege to perform Denial of service attack from adjacent UI by sending a malicious request which leads to low impact on the availability and no impact on confidentiality or Integrity of the application. low complexity sap | 3.5 |
2023-12-12 | CVE-2023-42874 | Unspecified vulnerability in Apple Macos This issue was addressed with improved state management. low complexity apple | 2.4 |
2023-12-09 | CVE-2023-6120 | Path Traversal vulnerability in Collne Welcart E-Commerce The Welcart e-Commerce plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 2.9.6 via the upload_certificate_file function. | 2.7 |
2023-12-08 | CVE-2023-6614 | Hidden Functionality vulnerability in Typecho 1.2.1 A vulnerability classified as problematic was found in Typecho 1.2.1. | 2.7 |
2023-12-05 | CVE-2023-45085 | Improper Initialization vulnerability in Softiron Hypercloud 2.0.0/2.0.1/2.0.2 An issue exists in SoftIron HyperCloud where compute nodes may come online immediately without following the correct initialization process. In this instance, workloads may be scheduled on these nodes and deploy to a failed or erroneous state, which impacts the availability of these workloads that may be deployed during this time window. This issue impacts HyperCloud versions from 2.0.0 to before 2.0.3. | 3.3 |
2023-12-05 | CVE-2023-42569 | Incorrect Authorization vulnerability in Samsung Android 11.0/13.0 Improper authorization verification vulnerability in AR Emoji prior to SMR Dec-2023 Release 1 allows attackers to read sandbox data of AR Emoji. | 3.3 |