Vulnerabilities > Low

DATE CVE VULNERABILITY TITLE RISK
2023-02-09 CVE-2023-21438 Exposure of Resource to Wrong Sphere vulnerability in Samsung Android 11.0/12.0
Improper logic in HomeScreen prior to SMR Feb-2023 Release 1 allows physical attacker to access App preview protected by Secure Folder.
low complexity
samsung CWE-668
2.4
2.4
2023-02-09 CVE-2023-21447 Exposure of Resource to Wrong Sphere vulnerability in Samsung Cloud 4.7.0.3/5.1.0.8/5.2.00.7
Improper access control vulnerabilities in Samsung Cloud prior to version 5.3.0.32 allows local attackers to access information with Samsung Cloud's privilege via implicit intent.
local
low complexity
samsung CWE-668
3.3
3.3
2023-02-09 CVE-2023-21448 Path Traversal vulnerability in Samsung Cloud 4.7.0.3/5.1.0.8/5.2.00.7
Path traversal vulnerability in Samsung Cloud prior to version 5.3.0.32 allows attacker to access specific png file.
local
low complexity
samsung CWE-22
3.3
3.3
2023-02-09 CVE-2023-21450 Missing Authorization vulnerability in Samsung ONE Hand Operation +
Missing Authorization vulnerability in One Hand Operation + prior to version 6.1.21 allows multi-users to access owner's widget without authorization via gesture setting.
low complexity
samsung CWE-862
2.1
2.1
2023-02-01 CVE-2023-23469 Unspecified vulnerability in IBM Cloud PAK for Business Automation
IBM ICP4A - Automation Decision Services 18.0.0, 18.0.1, 18.0.2, 19.0.1, 19.0.2, 19.0.3, 20.0.1, 20.0.2, 20.0.3, 21.0.1, 21.0.2, 21.0.3, 22.0.1, and 22.0.2 allows web pages to be stored locally which can be read by another user on the system.
local
low complexity
ibm
3.3
3.3
2023-01-27 CVE-2022-39324 Unspecified vulnerability in Grafana
Grafana is an open-source platform for monitoring and observability.
network
low complexity
grafana
3.5
3.5
2023-01-27 CVE-2022-43978 Use of Hard-coded Credentials vulnerability in Pandorafms Pandora FMS
There is an improper authentication vulnerability in Pandora FMS v764.
network
high complexity
pandorafms CWE-798
3.7
3.7
2023-01-27 CVE-2022-44717 Open Redirect vulnerability in Netscout Ngeniusone 6.3.2
An issue was discovered in NetScout nGeniusONE 6.3.2 build 904.
network
high complexity
netscout CWE-601
3.1
3.1
2023-01-27 CVE-2022-44718 Open Redirect vulnerability in Netscout Ngeniusone 6.3.2
An issue was discovered in NetScout nGeniusONE 6.3.2 build 904.
network
low complexity
netscout CWE-601
3.5
3.5
2023-01-26 CVE-2023-0463 Unspecified vulnerability in Devolutions Remote Desktop Manager 2022.3.29/2022.3.30
The force offline MFA prompt setting is not respected when switching to offline mode in Devolutions Remote Desktop Manager 2022.3.29 to 2022.3.30 allows a user to save sensitive data on disk.
local
low complexity
devolutions
3.3
3.3