Vulnerabilities > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-04-03 | CVE-2020-5283 | Cross-site Scripting vulnerability in Viewvc ViewVC before versions 1.1.28 and 1.2.1 has a XSS vulnerability in CVS show_subdir_lastmod support. | 3.5 |
| 2020-04-02 | CVE-2019-19092 | Missing Authentication for Critical Function vulnerability in Hitachienergy Esoms ABB eSOMS versions 4.0 to 6.0.3 use ASP.NET Viewstate without Message Authentication Code (MAC). | 3.5 |
| 2020-04-02 | CVE-2019-19090 | Missing Encryption of Sensitive Data vulnerability in Hitachienergy Esoms 4.0/6.0/6.0.2 For ABB eSOMS versions 4.0 to 6.0.2, the Secure Flag is not set in the HTTP response header. | 3.5 |
| 2020-04-01 | CVE-2020-11470 | Insufficient Verification of Data Authenticity vulnerability in Zoom Meetings 4.6.8 Zoom Client for Meetings through 4.6.8 on macOS has the disable-library-validation entitlement, which allows a local process (with the user's privileges) to obtain unprompted microphone and camera access by loading a crafted library and thereby inheriting Zoom Client's microphone and camera access. | 3.3 |
| 2020-04-01 | CVE-2020-9780 | Improper Cross-boundary Removal of Sensitive Data vulnerability in Apple Ipados and Iphone OS The issue was resolved by clearing application previews when content is deleted. | 3.3 |
| 2020-04-01 | CVE-2020-9776 | Unspecified vulnerability in Apple mac OS X This issue was addressed with a new entitlement. | 3.3 |
| 2020-04-01 | CVE-2020-9773 | Unspecified vulnerability in Apple Iphone OS The issue was addressed with improved handling of icon caches. | 3.3 |
| 2020-04-01 | CVE-2020-3894 | Race Condition vulnerability in Apple products A race condition was addressed with additional validation. | 3.1 |
| 2020-04-01 | CVE-2020-3891 | Unspecified vulnerability in Apple Iphone OS A logic issue was addressed with improved state management. low complexity apple | 2.4 |
| 2020-03-30 | CVE-2019-9508 | Cross-site Scripting vulnerability in Vertiv Avocent Umg-4000 Firmware 4.2.1.19 The web interface of the Vertiv Avocent UMG-4000 version 4.2.1.19 is vulnerable to stored XSS. | 3.5 |