Vulnerabilities > Low

DATE CVE VULNERABILITY TITLE RISK
2024-09-10 CVE-2024-44114 Incorrect Authorization vulnerability in SAP Netweaver Application Server Abap
SAP NetWeaver Application Server for ABAP and ABAP Platform allow users with high privileges to execute a program that reveals data over the network.
network
low complexity
sap CWE-863
2.7
2024-09-09 CVE-2024-8042 Missing Authorization vulnerability in Rapid7 Insight Platform
Rapid7 Insight Platform versions between November 2019 and August 14, 2024 suffer from missing authorization issues whereby an attacker can intercept local requests to set the name and description of a new user group.
high complexity
rapid7 CWE-862
3.1
2024-09-06 CVE-2024-32771 Improper Restriction of Excessive Authentication Attempts vulnerability in Qnap QTS and Quts Hero
An improper restriction of excessive authentication attempts vulnerability has been reported to affect several QNAP operating system versions.
low complexity
qnap CWE-307
2.4
2024-09-04 CVE-2024-34640 Unspecified vulnerability in Samsung Android 12.0/13.0/14.0
Improper access control vulnerability in BGProtectManager prior to SMR Sep-2024 Release 1 allows local attackers to bypass restriction of process expiration.
local
low complexity
samsung
3.3
2024-09-04 CVE-2024-34641 Unspecified vulnerability in Samsung Android 12.0/13.0/14.0
Improper Export of Android Application Components in FeliCaTest prior to SMR Sep-2024 Release 1 allows local attackers to enable NFC configuration.
local
low complexity
samsung
3.3
2024-09-04 CVE-2024-34649 Unspecified vulnerability in Samsung Android 14.0
Improper access control in new Dex Mode in multitasking framework prior to SMR Sep-2024 Release 1 allows physical attackers to temporarily access an unlocked screen.
low complexity
samsung
2.4
2024-09-04 CVE-2024-34650 Incorrect Authorization vulnerability in Samsung Android 14.0
Incorrect authorization in CocktailbarService prior to SMR Sep-2024 Release 1 allows local attackers to access privileged APIs related to Edge panel.
local
low complexity
samsung CWE-863
3.3
2024-09-04 CVE-2024-34652 Incorrect Authorization vulnerability in Samsung Android 12.0/13.0/14.0
Incorrect authorization in kperfmon prior to SMR Sep-2024 Release 1 allows local attackers to access information related to performance including app usage.
local
low complexity
samsung CWE-863
3.3
2024-09-03 CVE-2024-45615 Use of Uninitialized Resource vulnerability in multiple products
A vulnerability was found in OpenSC, OpenSC tools, PKCS#11 module, minidriver, and CTK.
high complexity
redhat opensc-project CWE-908
3.9
2024-09-03 CVE-2024-45616 Use of Uninitialized Resource vulnerability in multiple products
A vulnerability was found in OpenSC, OpenSC tools, PKCS#11 module, minidriver, and CTK.
high complexity
redhat opensc-project CWE-908
3.9