Vulnerabilities > Low

DATE CVE VULNERABILITY TITLE RISK
2019-04-09 CVE-2019-1573 Missing Encryption of Sensitive Data vulnerability in Paloaltonetworks Globalprotect 4.1.0/4.1.10
GlobalProtect Agent 4.1.0 for Windows and GlobalProtect Agent 4.1.10 and earlier for macOS may allow a local authenticated attacker who has compromised the end-user account and gained the ability to inspect memory, to access authentication and/or session tokens and replay them to spoof the VPN session and gain access as the user.
local
high complexity
paloaltonetworks CWE-311
2.5
2.5
2019-04-03 CVE-2018-4470 Unspecified vulnerability in Apple mac OS X
A privacy issue in the handling of Open Directory records was addressed with improved indexing.
local
low complexity
apple
3.3
3.3
2019-04-03 CVE-2018-4446 Improper Input Validation vulnerability in Apple Iphone OS
This issue was addressed with improved entitlements.
local
low complexity
apple CWE-20
3.3
3.3
2019-04-03 CVE-2018-4430 Information Exposure vulnerability in Apple Iphone OS
A lock screen issue allowed access to contacts on a locked device.
low complexity
apple CWE-200
2.4
2.4
2019-04-03 CVE-2018-4387 Information Exposure vulnerability in Apple Iphone OS
A lock screen issue allowed access to photos via Reply With Message on a locked device.
low complexity
apple CWE-200
2.4
2.4
2019-04-03 CVE-2018-4352 Information Exposure vulnerability in Apple Iphone OS
A consistency issue existed in the handling of application snapshots.
local
low complexity
apple CWE-200
3.3
3.3
2019-04-03 CVE-2018-4325 Information Exposure vulnerability in Apple Iphone OS
A logic issue was addressed with improved restrictions.
low complexity
apple CWE-200
2.4
2.4
2019-04-03 CVE-2018-4322 Improper Input Validation vulnerability in Apple Iphone OS
This issue was addressed with improved entitlements.
local
low complexity
apple CWE-20
3.3
3.3
2019-04-02 CVE-2018-1623 Information Exposure vulnerability in IBM Security Privileged Identity Manager 2.1.1
IBM Security Privileged Identity Manager Virtual Appliance 2.2.1 allows web pages to be stored locally which can be read by another user on the system.
local
low complexity
ibm CWE-200
3.3
3.3
2019-03-27 CVE-2017-2752 7PK - Security Features vulnerability in HP Tommy Hilfiger Th24/7
A potential security vulnerability caused by incomplete obfuscation of application configuration information was discovered in Tommy Hilfiger TH24/7 Android app versions 2.0.0.11, 2.0.1.14, 2.1.0.16, and 2.2.0.19.
low complexity
hp CWE-254
2.1
2.1