Vulnerabilities > Low

DATE CVE VULNERABILITY TITLE RISK
2024-03-08 CVE-2024-23291 Unspecified vulnerability in Apple products
A privacy issue was addressed with improved private data redaction for log entries.
local
low complexity
apple
3.3
2024-03-08 CVE-2024-23292 Unspecified vulnerability in Apple Iphone OS
This issue was addressed with improved data protection.
local
low complexity
apple
3.3
2024-03-05 CVE-2024-23243 Unspecified vulnerability in Apple Ipad OS and Iphone OS
A privacy issue was addressed with improved private data redaction for log entries.
local
low complexity
apple
3.3
2024-03-05 CVE-2024-23256 Unspecified vulnerability in Apple Ipad OS and Iphone OS
A logic issue was addressed with improved state management.
local
low complexity
apple
3.3
2024-02-29 CVE-2024-1949 Race Condition vulnerability in Mattermost Server
A race condition in Mattermost versions 8.1.x before 8.1.9, and 9.4.x before 9.4.2 allows an authenticated attacker to gain unauthorized access to individual posts' contents via carefully timed post creation while another user deletes posts.
network
high complexity
mattermost CWE-362
2.6
2024-02-27 CVE-2021-46934 Improper Check for Unusual or Exceptional Conditions vulnerability in Linux Kernel
In the Linux kernel, the following vulnerability has been resolved: i2c: validate user data in compat ioctl Wrong user data may cause warning in i2c_transfer(), ex: zero msgs. Userspace should not be able to trigger warnings, so this patch adds validation checks for user data in compact ioctl to prevent reported warnings
local
low complexity
linux CWE-754
3.3
2024-02-21 CVE-2023-50955 Path Traversal vulnerability in IBM Infosphere Information Server 11.7
IBM InfoSphere Information Server 11.7 could allow an authenticated privileged user to obtain the absolute path of the web server installation which could aid in further attacks against the system.
network
low complexity
ibm CWE-22
2.7
2024-02-21 CVE-2023-42939 Unspecified vulnerability in Apple Iphone OS
A logic issue was addressed with improved checks.
local
low complexity
apple
3.3
2024-02-16 CVE-2023-40122 Unspecified vulnerability in Google Android
In applyCustomDescription of SaveUi.java, there is a possible way to view other user's images due to a confused deputy.
local
low complexity
google
3.3
2024-02-16 CVE-2024-0037 Missing Authorization vulnerability in Google Android
In applyCustomDescription of SaveUi.java, there is a possible way to view images belonging to a different user due to a missing permission check.
local
low complexity
google CWE-862
3.3