Vulnerabilities > Low

DATE CVE VULNERABILITY TITLE RISK
2025-01-06 CVE-2024-51472 IBM UrbanCode Deploy (UCD) 7.2 through 7.2.3.13, 7.3 through 7.3.2.8, and IBM DevOps Deploy 8.0 through 8.0.1.3 are vulnerable to HTML injection.
network
high complexity
CWE-80
3.1
3.1
2025-01-06 CVE-2024-12970 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in TUBITAK BILGEM Pardus OS My Computer allows OS Command Injection.This issue affects Pardus OS My Computer: before 0.7.2.
low complexity
CWE-78
3.9
3.9
2024-12-27 CVE-2020-9089 Unspecified vulnerability in Huawei P30 PRO Firmware
There is an information vulnerability in Huawei smartphones.
local
low complexity
huawei
3.3
3.3
2024-12-20 CVE-2024-44298 Insecure Storage of Sensitive Information vulnerability in Apple Macos 15.0
A privacy issue was addressed with improved private data redaction for log entries.
local
low complexity
apple CWE-922
3.3
3.3
2024-12-17 CVE-2024-49820 Cleartext Transmission of Sensitive Information vulnerability in IBM Security Guardium KEY Lifecycle Manager
IBM Security Guardium Key Lifecycle Manager 4.1, 4.1.1, 4.2.0, and 4.2.1 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security.
network
high complexity
ibm CWE-319
3.7
3.7
2024-12-17 CVE-2024-9654 The Easy Digital Downloads plugin for WordPress is vulnerable to Improper Authorization in versions 3.1 through 3.3.4.
network
high complexity
CWE-863
3.7
3.7
2024-12-13 CVE-2024-12300 The AR for WordPress plugin for WordPress is vulnerable to unauthorized double extension file upload due to a missing capability check on the set_ar_featured_image() function in all versions up to, and including, 7.3.
network
high complexity
CWE-862
3.7
3.7
2024-12-12 CVE-2024-44200 Unspecified vulnerability in Apple Ipados
This issue was addressed with improved redaction of sensitive information.
local
low complexity
apple
3.3
3.3
2024-12-12 CVE-2024-44290 Unspecified vulnerability in Apple Ipados
This issue was addressed with improved redaction of sensitive information.
local
low complexity
apple
3.3
3.3
2024-12-12 CVE-2024-54485 Unspecified vulnerability in Apple Iphone OS
The issue was addressed by adding additional logic.
low complexity
apple
2.4
2.4