Vulnerabilities > Low

DATE CVE VULNERABILITY TITLE RISK
2021-09-01 CVE-2021-36045 XMP Toolkit SDK versions 2020.1 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of arbitrary memory.
local
low complexity
adobe debian
3.3
2021-09-01 CVE-2021-36053 XMP Toolkit SDK versions 2020.1 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of arbitrary memory.
local
low complexity
adobe debian
3.3
2021-08-31 CVE-2021-39164 Matrix is an ecosystem for open federated Instant Messaging and Voice over IP.
network
high complexity
matrix fedoraproject
3.1
2021-08-31 CVE-2021-39163 Matrix is an ecosystem for open federated Instant Messaging and Voice over IP.
network
high complexity
matrix fedoraproject
3.1
2021-08-31 CVE-2021-34563 Unspecified vulnerability in Pepperl-Fuchs products
In PEPPERL+FUCHS WirelessHART-Gateway 3.0.8 and 3.0.9 the HttpOnly attribute is not set on a cookie.
local
low complexity
pepperl-fuchs
3.3
2021-08-30 CVE-2021-27913 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) vulnerability in Acquia Mautic
The function mt_rand is used to generate session tokens, this function is cryptographically flawed due to its nature being one pseudorandomness, an attacker can take advantage of the cryptographically insecure nature of this function to enumerate session tokens for accounts that are not under his/her control This issue affects: Mautic Mautic versions prior to 3.3.4; versions prior to 4.0.0.
network
low complexity
acquia CWE-338
3.5
2021-08-25 CVE-2021-22245 Improper Input Validation vulnerability in Gitlab
Improper validation of commit author in GitLab CE/EE affecting all versions allowed an attacker to make several pages in a project impossible to view
network
low complexity
gitlab CWE-20
2.7
2021-08-25 CVE-2020-18974 Classic Buffer Overflow vulnerability in Nasm Netwide Assembler
Buffer Overflow in Netwide Assembler (NASM) v2.15.xx allows attackers to cause a denial of service via 'crc64i' in the component 'nasmlib/crc64'.
local
low complexity
nasm CWE-120
3.3
2021-08-25 CVE-2021-40086 Information Exposure vulnerability in Primekey Ejbca
An issue was discovered in PrimeKey EJBCA before 7.6.0.
network
high complexity
primekey CWE-200
2.2
2021-08-25 CVE-2021-40087 Cleartext Storage of Sensitive Information vulnerability in Primekey Ejbca
An issue was discovered in PrimeKey EJBCA before 7.6.0.
network
low complexity
primekey CWE-312
2.7