Vulnerabilities > Low

DATE CVE VULNERABILITY TITLE RISK
2021-09-08 CVE-2021-30671 Improper Input Validation vulnerability in Apple mac OS X and Macos
A validation issue was addressed with improved logic.
local
low complexity
apple CWE-20
3.3
2021-09-08 CVE-2021-30803 Unspecified vulnerability in Apple Macos
A permissions issue was addressed with improved validation.
local
low complexity
apple
3.3
2021-09-08 CVE-2021-30804 Unspecified vulnerability in Apple Iphone OS
A permissions issue was addressed with improved validation.
local
low complexity
apple
3.3
2021-09-01 CVE-2021-36045 XMP Toolkit SDK versions 2020.1 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of arbitrary memory.
local
low complexity
adobe debian
3.3
2021-09-01 CVE-2021-36053 XMP Toolkit SDK versions 2020.1 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of arbitrary memory.
local
low complexity
adobe debian
3.3
2021-08-31 CVE-2021-39164 Matrix is an ecosystem for open federated Instant Messaging and Voice over IP.
network
high complexity
matrix fedoraproject
3.1
2021-08-31 CVE-2021-39163 Matrix is an ecosystem for open federated Instant Messaging and Voice over IP.
network
high complexity
matrix fedoraproject
3.1
2021-08-31 CVE-2021-34563 Unspecified vulnerability in Pepperl-Fuchs products
In PEPPERL+FUCHS WirelessHART-Gateway 3.0.8 and 3.0.9 the HttpOnly attribute is not set on a cookie.
local
low complexity
pepperl-fuchs
3.3
2021-08-30 CVE-2021-27913 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) vulnerability in Acquia Mautic
The function mt_rand is used to generate session tokens, this function is cryptographically flawed due to its nature being one pseudorandomness, an attacker can take advantage of the cryptographically insecure nature of this function to enumerate session tokens for accounts that are not under his/her control This issue affects: Mautic Mautic versions prior to 3.3.4; versions prior to 4.0.0.
network
low complexity
acquia CWE-338
3.5
2021-08-25 CVE-2021-22245 Improper Input Validation vulnerability in Gitlab
Improper validation of commit author in GitLab CE/EE affecting all versions allowed an attacker to make several pages in a project impossible to view
network
low complexity
gitlab CWE-20
2.7