Vulnerabilities > Low

DATE CVE VULNERABILITY TITLE RISK
2020-04-15 CVE-2020-11767 Istio through 1.5.1 and Envoy through 1.14.1 have a data-leak issue.
network
high complexity
istio envoyproxy
3.1
2020-04-13 CVE-2020-11736 Link Following vulnerability in multiple products
fr-archive-libarchive.c in GNOME file-roller through 3.36.1 allows Directory Traversal during extraction because it lacks a check of whether a file's parent is a symlink to a directory outside of the intended extraction location.
local
low complexity
gnome debian canonical CWE-59
3.9
2020-04-13 CVE-2020-3126 Improper Input Validation vulnerability in Cisco Webex Meetings Server T39.3
vulnerability within the Multimedia Viewer feature of Cisco Webex Meetings could allow an authenticated, remote attacker to bypass security protections.
network
low complexity
cisco CWE-20
3.5
2020-04-13 CVE-2019-1866 Insufficient Verification of Data Authenticity vulnerability in Cisco Webex Business Suite 39
Cisco Webex Business Suite before 39.1.0 contains a vulnerability that could allow an unauthenticated, remote attacker to affect the integrity of the application.
network
high complexity
cisco CWE-345
3.7
2020-04-10 CVE-2020-5303 Out-of-bounds Write vulnerability in Tendermint
Tendermint before versions 0.33.3, 0.32.10, and 0.31.12 has a denial-of-service vulnerability.
network
high complexity
tendermint CWE-787
3.7
2020-04-08 CVE-2020-1987 Information Exposure Through Log Files vulnerability in Paloaltonetworks Globalprotect
An information exposure vulnerability in the logging component of Palo Alto Networks Global Protect Agent allows a local authenticated user to read VPN cookie information when the troubleshooting logging level is set to "Dump".
local
low complexity
paloaltonetworks CWE-532
3.3
2020-04-08 CVE-2018-21077 Information Exposure vulnerability in Google Android
An issue was discovered on Samsung mobile devices with M(6.0), N(7.x), and O(8.x) software.
low complexity
google CWE-200
2.4
2020-04-08 CVE-2018-21074 Information Exposure vulnerability in Google Android 6.0/6.0.1
An issue was discovered on Samsung mobile devices with M(6.x) (Exynos or Qualcomm chipsets) software.
local
low complexity
google CWE-200
3.3
2020-04-08 CVE-2018-21073 Information Exposure vulnerability in Google Android
An issue was discovered on Samsung mobile devices with N(7.x) and O(8.0) (Galaxy S9+, Galaxy S9, Galaxy S8+, Galaxy S8, Note 8).
low complexity
google CWE-200
2.4
2020-04-08 CVE-2018-21046 Missing Authorization vulnerability in Google Android 8.0/8.1
An issue was discovered on Samsung mobile devices with O(8.x) software.
low complexity
google CWE-862
2.4