Vulnerabilities > Low

DATE CVE VULNERABILITY TITLE RISK
2022-07-12 CVE-2022-33701 Unspecified vulnerability in Google Android 10.0/11.0/12.0
Improper access control vulnerability in KnoxCustomManagerService prior to SMR Jul-2022 Release 1 allows attacker to call PowerManaer.goToSleep method which is protected by system permission by sending braodcast intent.
local
low complexity
google
3.3
2022-07-12 CVE-2022-33705 Unspecified vulnerability in Samsung Calendar 11.6.08.0/12.2.11.3000
Information exposure in Calendar prior to version 12.3.05.10000 allows attacker to access calendar schedule without READ_CALENDAR permission.
local
low complexity
samsung
3.3
2022-07-12 CVE-2022-33706 Unspecified vulnerability in Samsung Gallery
Improper access control vulnerability in Samsung Gallery prior to version 13.1.05.8 allows physical attackers to access the pictures using S Pen air gesture.
low complexity
samsung
2.4
2022-07-12 CVE-2022-35648 Unspecified vulnerability in Nautilus T616 Firmware and T618 Firmware
Nautilus treadmills T616 S/N 100672PRO21140001 through 100672PRO21171980 and T618 S/N 100647PRO21130111 through 100647PRO21183960 with software before 2022-06-09 allow physically proximate attackers to cause a denial of service (fall) by connecting the power cord to a 120V circuit (which may lead to self-starting at an inopportune time).
low complexity
nautilus
2.4
2022-07-07 CVE-2022-2047 Improper Input Validation vulnerability in multiple products
In Eclipse Jetty versions 9.4.0 thru 9.4.46, and 10.0.0 thru 10.0.9, and 11.0.0 thru 11.0.9 versions, the parsing of the authority segment of an http scheme URI, the Jetty HttpURI class improperly detects an invalid input as a hostname.
network
low complexity
eclipse debian netapp CWE-20
2.7
2022-07-07 CVE-2022-23744 Unspecified vulnerability in Checkpoint Endpoint Security and Harmony Endpoint
Check Point Endpoint before version E86.50 failed to protect against specific registry change which allowed to disable endpoint protection by a local administrator.
local
low complexity
checkpoint
2.3
2022-07-05 CVE-2022-31014 Injection vulnerability in Nextcloud Server
Nextcloud server is an open source personal cloud server.
network
low complexity
nextcloud CWE-74
3.5
2022-07-01 CVE-2022-1981 Incorrect Authorization vulnerability in Gitlab
An issue has been discovered in GitLab EE affecting all versions starting from 12.2 prior to 14.10.5, 15.0 prior to 15.0.4, and 15.1 prior to 15.1.1.
network
low complexity
gitlab CWE-863
2.7
2022-06-28 CVE-2021-3433 Unspecified vulnerability in Zephyrproject Zephyr 2.5.0/2.5.1
Invalid channel map in CONNECT_IND results to Deadlock.
local
low complexity
zephyrproject
3.3
2022-06-28 CVE-2021-3435 Use of Uninitialized Resource vulnerability in Zephyrproject Zephyr 2.4.0/2.5.0/2.5.1
Information leakage in le_ecred_conn_req().
local
low complexity
zephyrproject CWE-908
3.3