Vulnerabilities > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-04-12 | CVE-2022-24413 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS, versions 8.2.2-9.3.x, contain a time-of-check-to-time-of-use vulnerability. | 3.6 |
| 2022-04-12 | CVE-2022-27657 | Unspecified vulnerability in SAP Focused RUN 1.0 A highly privileged remote attacker, can gain unauthorized access to display contents of restricted directories by exploiting insufficient validation of path information in SAP Focused Run (Simple Diagnostics Agent 1.0) - version 1.0. | 2.7 |
| 2022-04-11 | CVE-2022-1157 | Information Exposure Through Log Files vulnerability in Gitlab Missing sanitization of logged exception messages in all versions prior to 14.7.7, 14.8 prior to 14.8.5, and 14.9 prior to 14.9.2 of GitLab CE/EE causes potential sensitive values in invalid URLs to be logged | 2.4 |
| 2022-04-11 | CVE-2022-25833 | Improper Authentication vulnerability in Google Android 10.0/11.0 Improper authentication in ImsService prior to SMR Apr-2022 Release 1 allows attackers to get IMSI without READ_PRIVILEGED_PHONE_STATE permission. | 3.3 |
| 2022-04-11 | CVE-2022-26090 | Unspecified vulnerability in Google Android 10.0/11.0 Improper access control vulnerability in SamsungContacts prior to SMR Apr-2022 Release 1 allows that attackers can access contact information without permission. | 3.3 |
| 2022-04-11 | CVE-2022-27575 | Incorrect Authorization vulnerability in Google Android 10.0/11.0/12.0 Information exposure vulnerability in One UI Home prior to SMR April-2022 Release 1 allows to access currently launched foreground app information without permission. | 3.3 |
| 2022-04-11 | CVE-2022-27576 | Exposure of Resource to Wrong Sphere vulnerability in Google Android 10.0/11.0/12.0 Information exposure vulnerability in Samsung DeX Home prior to SMR April-2022 Release 1 allows to access currently launched foreground app information without permission | 3.3 |
| 2022-04-11 | CVE-2022-27832 | Out-of-bounds Read vulnerability in Google Android 10.0/11.0/12.0 Improper boundary check in media.extractor library prior to SMR Apr-2022 Release 1 allows attackers to cause denial of service via a crafted media file. | 3.3 |
| 2022-04-11 | CVE-2022-28775 | Unspecified vulnerability in Samsung Flow 4.8.03.5/4.8.5.0 Improper access control vulnerability in Samsung Flow prior to version 4.8.06.5 allows attacker to write the file without Samsung Flow permission. | 3.3 |
| 2022-04-11 | CVE-2022-28777 | Unspecified vulnerability in Samsung Members Improper access control vulnerability in Samsung Members prior to version 13.6.08.5 allows local attacker to execute call function without CALL_PHONE permission. | 3.3 |