Vulnerabilities > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-07-12 | CVE-2019-1010310 | Injection vulnerability in Glpi-Project Glpi 9.3.1 GLPI GLPI Product 9.3.1 is affected by: Frame and Form tags Injection allowing admins to phish users by putting code in reminder description. | 3.5 |
| 2019-07-04 | CVE-2019-13232 | Resource Exhaustion vulnerability in multiple products Info-ZIP UnZip 6.0 mishandles the overlapping of files inside a ZIP container, leading to denial of service (resource consumption), aka a "better zip bomb" issue. | 3.3 |
| 2019-07-03 | CVE-2019-10183 | Unspecified vulnerability in Redhat Enterprise Linux and Virt-Manager Virt-install(1) utility used to provision new virtual machines has introduced an option '--unattended' to create VMs without user interaction. | 3.3 |
| 2019-07-01 | CVE-2019-3962 | Cross-site Scripting vulnerability in Tenable Nessus Content Injection vulnerability in Tenable Nessus prior to 8.5.0 may allow an authenticated, local attacker to exploit this vulnerability by convincing another targeted Nessus user to view a malicious URL and use Nessus to send fraudulent messages. | 3.3 |
| 2019-07-01 | CVE-2019-4296 | Information Exposure Through Log Files vulnerability in IBM Robotic Process Automation With Automation Anywhere 11.0.0.0/11.0.0.1/11.0.0.2 IBM Robotic Process Automation with Automation Anywhere 11 information disclosure could allow a local user to obtain e-mail contents from the client debug log file. | 3.3 |
| 2019-06-26 | CVE-2019-10134 | Unspecified vulnerability in Moodle A flaw was found in Moodle before 3.7, 3.6.4, 3.5.6, 3.4.9 and 3.1.18. | 3.7 |
| 2019-06-25 | CVE-2019-4150 | Improper Certificate Validation vulnerability in IBM Security Access Manager IBM Security Access Manager 9.0.1 through 9.0.6 does not validate, or incorrectly validates, a certificate which could allow an attacker to spoof a trusted entity by using a man-in-the-middle (MITM) attack. | 3.7 |
| 2019-06-17 | CVE-2019-4177 | Improper Privilege Management vulnerability in IBM Cognos Controller IBM Cognos Controller 10.2.0, 10.2.1, 10.3.0, 10.3.1, and 10.4.0 allows web pages to be stored locally which can be read by another user on the system. | 3.3 |
| 2019-06-17 | CVE-2019-4174 | Improper Privilege Management vulnerability in IBM Cognos Controller IBM Cognos Controller 10.2.0, 10.2.1, 10.3.0, 10.3.1, and 10.4.0 allows web pages to be stored locally which can be read by another user on the system. | 3.3 |
| 2019-06-13 | CVE-2018-10947 | Improper Input Validation vulnerability in Polycom Realpresence Debut Firmware An issue was discovered in versions earlier than 1.3.2 for Polycom RealPresence Debut where the admin cookie is reset only after a Debut is rebooted. | 3.1 |