Vulnerabilities > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-04-02 | CVE-2014-8571 | Permissions, Privileges, and Access Controls vulnerability in Huawei products Apps on Huawei Ascend P6 mobile phones with software EDGE-U00 V100R001C17B508SP01 and earlier versions before V100R001C17B508SP02; EDGE-T00 V100R001C01B508SP01 and earlier versions before V100R001C01B508SP02; EDGE-C00 V100R001C92B508SP02 and earlier versions before V100R001C92B508SP03 can capture screens without the root permission. | 3.3 |
| 2017-04-02 | CVE-2017-2426 | Information Exposure vulnerability in Apple mac OS X An issue was discovered in certain Apple products. | 3.3 |
| 2017-04-02 | CVE-2017-2397 | Information Exposure vulnerability in Apple Iphone OS An issue was discovered in certain Apple products. | 2.4 |
| 2017-04-02 | CVE-2017-2384 | Information Exposure vulnerability in Apple Iphone OS An issue was discovered in certain Apple products. | 3.3 |
| 2017-04-02 | CVE-2017-2383 | Unspecified vulnerability in Apple Icloud and Itunes An issue was discovered in certain Apple products. | 3.1 |
| 2017-03-29 | CVE-2016-6349 | Information Exposure vulnerability in Projectatomic Oci-Register-Machine The machinectl command in oci-register-machine allows local users to list running containers and possibly obtain sensitive information by running that command. | 3.3 |
| 2017-03-28 | CVE-2016-9471 | Unspecified vulnerability in Revive-Adserver Revive Adserver Revive Adserver before 3.2.5 and 4.0.0 suffers from Special Element Injection. | 3.1 |
| 2017-03-27 | CVE-2016-6102 | Information Exposure vulnerability in IBM Security KEY Lifecycle Manager IBM Tivoli Key Lifecycle Manager 2.5 and 2.6 stores sensitive information in URL parameters. | 3.7 |
| 2017-03-23 | CVE-2015-4078 | Information Exposure vulnerability in Cloudera Manager and Navigator Cloudera Navigator 2.2.x before 2.2.4 and 2.3.x before 2.3.3 include support for SSLv3 when configured to use SSL/TLS, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, a variant of CVE-2014-3566 (aka POODLE). | 3.1 |
| 2017-03-23 | CVE-2015-2263 | Permissions, Privileges, and Access Controls vulnerability in Cloudera Manager Cloudera Manager 4.x, 5.0.x before 5.0.6, 5.1.x before 5.1.5, 5.2.x before 5.2.5, and 5.3.x before 5.3.3 uses global read permissions for files in its configuration directory when starting YARN NodeManager, which allows local users to obtain sensitive information by reading the files, as demonstrated by yarn.keytab or ssl-server.xml in /var/run/cloudera-scm-agent/process. | 3.3 |