Vulnerabilities > Low

DATE CVE VULNERABILITY TITLE RISK
2020-11-26 CVE-2020-29042 Improper Restriction of Excessive Authentication Attempts vulnerability in Bigbluebutton
An issue was discovered in BigBlueButton through 2.2.29.
network
high complexity
bigbluebutton CWE-307
3.7
2020-11-23 CVE-2020-26229 Unspecified vulnerability in Typo3
TYPO3 is an open source PHP based web content management system.
network
high complexity
typo3
3.7
2020-11-23 CVE-2020-25688 Use of Hard-coded Credentials vulnerability in Redhat Advanced Cluster Management for Kubernetes
A flaw was found in rhacm versions before 2.0.5 and before 2.1.0.
low complexity
redhat CWE-798
3.5
2020-11-19 CVE-2020-6879 Improper Input Validation vulnerability in ZTE Zxhn F670L Firmware and Zxhn Z500 Firmware
Some ZTE devices have input verification vulnerabilities.
low complexity
zte CWE-20
3.5
2020-11-17 CVE-2020-13353 Insufficient Session Expiration vulnerability in Gitlab Gitaly
When importing repos via URL, one time use git credentials were persisted beyond the expected time window in Gitaly 1.79.0 or above.
local
low complexity
gitlab CWE-613
3.2
2020-11-16 CVE-2020-24366 Unspecified vulnerability in Jetbrains Youtrack
Sensitive information could be disclosed in the JetBrains YouTrack application before 2020.2.0 for Android via application backups.
local
low complexity
jetbrains
3.3
2020-11-16 CVE-2019-19563 Unspecified vulnerability in Harman Hermes 2.1
A misconfiguration in the debug interface in Mercedes-Benz HERMES 2.1 allows an attacker with direct physical access to device hardware to obtain cellular modem information.
low complexity
harman
2.4
2020-11-16 CVE-2019-19561 Insecure Storage of Sensitive Information vulnerability in Harman Hermes 1.5
A misconfiguration in the debug interface in Mercedes-Benz HERMES 1.5 allows an attacker with direct physical access to device hardware to obtain cellular modem information.
low complexity
harman CWE-922
2.4
2020-11-16 CVE-2019-19557 Insecure Storage of Sensitive Information vulnerability in Harman Hermes 1.0
A misconfiguration in the debug interface in Mercedes-Benz HERMES 1 allows an attacker with direct physical access to device hardware to obtain cellular modem information.
low complexity
harman CWE-922
2.4
2020-11-13 CVE-2020-4886 Insecure Storage of Sensitive Information vulnerability in IBM Infosphere Information Server 11.7
IBM InfoSphere Information Server 11.7 stores sensitive information in the browser's history that could be obtained by a user who has access to the same system.
local
low complexity
ibm CWE-922
3.3