Vulnerabilities > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-12 | CVE-2023-45143 | Undici is an HTTP/1.1 client written from scratch for Node.js. | 3.5 |
| 2023-10-10 | CVE-2023-37939 | Unspecified vulnerability in Fortinet Forticlient An exposure of sensitive information to an unauthorized actor vulnerability [CWE-200] in FortiClient for Windows 7.2.0, 7.0 all versions, 6.4 all versions, 6.2 all versions, Linux 7.2.0, 7.0 all versions, 6.4 all versions, 6.2 all versions and Mac 7.2.0 through 7.2.1, 7.0 all versions, 6.4 all versions, 6.2 all versions, may allow a local authenticated attacker with no Administrative privileges to retrieve the list of files or folders excluded from malware scanning. | 3.3 |
| 2023-10-04 | CVE-2023-30732 | Unspecified vulnerability in Samsung Android 13.0 Improper access control in system property prior to SMR Oct-2023 Release 1 allows local attacker to get CPU serial number. | 3.3 |
| 2023-10-04 | CVE-2023-30735 | Improper Preservation of Permissions vulnerability in Samsung Sassistant Improper Preservation of Permissions vulnerability in SAssistant prior to version 8.7 allows local attackers to access backup data in SAssistant. | 3.3 |
| 2023-10-03 | CVE-2023-28373 | Unspecified vulnerability in Purestorage Purity//Fa A flaw exists in FlashArray Purity whereby an array administrator by configuring an external key manager can affect the availability of data on the system including snapshots protected by SafeMode. | 2.7 |
| 2023-10-02 | CVE-2023-28372 | Unspecified vulnerability in Purestorage Purity A flaw exists in FlashBlade Purity (OE) Version 4.1.0 whereby a user with privileges to extend an object’s retention period can affect the availability of the object lock. | 2.7 |
| 2023-10-02 | CVE-2023-36627 | Unspecified vulnerability in Purestorage Purity A flaw exists in FlashBlade Purity whereby a user with access to an administrative account on a FlashBlade that is configured with timezone-dependent snapshot schedules can configure a timezone to prevent the schedule from functioning properly. | 2.7 |
| 2023-09-30 | CVE-2023-5313 | Race Condition vulnerability in PHPkobo Ajax Poll Script 3.18 A vulnerability classified as problematic was found in phpkobo Ajax Poll Script 3.18. | 3.7 |
| 2023-09-29 | CVE-2023-5159 | Incorrect Authorization vulnerability in Mattermost Mattermost fails to properly verify the permissions when managing/updating a bot allowing a User Manager role with user edit permissions to manage/update bots. | 2.7 |
| 2023-09-29 | CVE-2023-5193 | Incorrect Authorization vulnerability in Mattermost Mattermost fails to properly check permissions when retrieving a post allowing for a System Role with the permission to manage channels to read the posts of a DM conversation. | 2.7 |