Vulnerabilities > Low

DATE CVE VULNERABILITY TITLE RISK
2023-03-26 CVE-2023-28858 Off-by-one Error vulnerability in Redis Redis-Py
redis-py before 4.5.3 leaves a connection open after canceling an async Redis command at an inopportune time, and can send response data to the client of an unrelated request in an off-by-one manner.
network
high complexity
redis CWE-193
3.7
3.7
2023-03-24 CVE-2023-1176 Unspecified vulnerability in Lfprojects Mlflow
Absolute Path Traversal in GitHub repository mlflow/mlflow prior to 2.2.2.
local
low complexity
lfprojects
3.3
3.3
2023-03-23 CVE-2023-1513 Improper Initialization vulnerability in multiple products
A flaw was found in KVM.
local
low complexity
linux fedoraproject redhat CWE-665
3.3
3.3
2023-03-21 CVE-2023-1541 Unspecified vulnerability in Answer
Business Logic Errors in GitHub repository answerdev/answer prior to 1.0.6.
network
low complexity
answer
3.8
3.8
2023-03-20 CVE-2023-28428 Unspecified vulnerability in Pdfio Project Pdfio
PDFio is a C library for reading and writing PDF files.
local
low complexity
pdfio-project
3.3
3.3
2023-03-16 CVE-2023-21452 Unspecified vulnerability in Samsung Android 11.0/12.0/13.0
Improper usage of implicit intent in Bluetooth prior to SMR Mar-2023 Release 1 allows attacker to get MAC address of connected device.
local
low complexity
samsung
3.3
3.3
2023-03-16 CVE-2023-21454 Unspecified vulnerability in Samsung Android 11.0/12.0/13.0
Improper authorization in Samsung Keyboard prior to SMR Mar-2023 Release 1 allows physical attacker to access users text history on the lockscreen.
low complexity
samsung
2.4
2.4
2023-03-16 CVE-2023-21458 Improper Privilege Management vulnerability in Samsung Android 11.0/12.0/13.0
Improper privilege management vulnerability in PhoneStatusBarPolicy in System UI prior to SMR Mar-2023 Release 1 allows attacker to turn off Do not disturb via unprotected intent.
local
low complexity
samsung CWE-269
3.3
3.3
2023-03-16 CVE-2023-21462 Unspecified vulnerability in Samsung Quick Share 3.5.14.18
The sensitive information exposure vulnerability in Quick Share Agent prior to versions 3.5.14.18 in Android 12 and 3.5.16.20 in Android 13 allows to local attacker to access MAC address without related permission.
local
low complexity
samsung
3.3
3.3
2023-03-16 CVE-2023-21463 Unspecified vulnerability in Samsung Myfiles 12.2.09.0/13.1.03.501
Improper access control vulnerability in MyFiles application prior to versions 12.2.09.0 in Android 11, 13.1.03.501 in Android 12 and 14.1.03.0 in Android 13 allows local attacker to get sensitive information of secret mode in Samsung Internet application with specific conditions.
local
low complexity
samsung
3.3
3.3