Vulnerabilities > Low

DATE CVE VULNERABILITY TITLE RISK
2024-11-17 CVE-2023-0657 A flaw was found in Keycloak.
high complexity
CWE-273
3.4
2024-11-12 CVE-2024-10672 Path Traversal vulnerability in Themeisle multiple Page Generator
The Multiple Page Generator Plugin – MPG plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the mpg_upsert_project_source_block() function in all versions up to, and including, 4.0.2.
network
low complexity
themeisle CWE-22
2.7
2024-11-12 CVE-2024-48838 Files or Directories Accessible to External Parties vulnerability in Dell Smartfabric Os10
Dell SmartFabric OS10 Software, version(s) 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contain(s) a Files or Directories Accessible to External Parties vulnerability.
local
low complexity
dell CWE-552
3.3
2024-11-10 CVE-2024-11049 Forced Browsing vulnerability in Zkteco Zkbio Time 9.0.1
A vulnerability classified as problematic has been found in ZKTeco ZKBio Time 9.0.1.
network
high complexity
zkteco CWE-425
3.7
2024-11-08 CVE-2024-50211 Unspecified vulnerability in Linux Kernel
In the Linux kernel, the following vulnerability has been resolved: udf: refactor inode_bmap() to handle error Refactor inode_bmap() to handle error since udf_next_aext() can return error now.
local
low complexity
linux
3.3
2024-11-06 CVE-2024-10920 Use of Hard-coded Credentials vulnerability in Mariazevedo88 Travels-Java-Api
A vulnerability was found in mariazevedo88 travels-java-api up to 5.0.1 and classified as problematic.
network
high complexity
mariazevedo88 CWE-798
3.7
2024-11-06 CVE-2024-34677 Insecure Storage of Sensitive Information vulnerability in Samsung Android 12.0/13.0/14.0
Exposure of sensitive information in System UI prior to SMR Nov-2024 Release 1 allow local attackers to make malicious apps appear as legitimate.
local
low complexity
samsung CWE-922
3.3
2024-11-06 CVE-2024-34682 Unspecified vulnerability in Samsung Android 14.0
Improper authorization in Settings prior to SMR Nov-2024 Release 1 allows physical attackers to access stored WiFi password in Maintenance Mode.
low complexity
samsung
2.4
2024-11-05 CVE-2024-50092 Unspecified vulnerability in Linux Kernel
In the Linux kernel, the following vulnerability has been resolved: net: netconsole: fix wrong warning A warning is triggered when there is insufficient space in the buffer for userdata.
local
low complexity
linux
3.3
2024-10-29 CVE-2024-10228 Incorrect Permission Assignment for Critical Resource vulnerability in Hashicorp Vagrant VMWare Utility
The Vagrant VMWare Utility Windows installer targeted a custom location with a non-protected path that could be modified by an unprivileged user, introducing potential for unauthorized file system writes.
local
low complexity
hashicorp CWE-732
3.3