Vulnerabilities > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-01-23 | CVE-2023-24069 | Unspecified vulnerability in Signal Signal-Desktop Signal Desktop before 6.2.0 on Windows, Linux, and macOS allows an attacker to obtain potentially sensitive attachments sent in messages from the attachments.noindex directory. | 3.3 |
| 2023-01-18 | CVE-2022-34399 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Dell products Dell Alienware m17 R5 BIOS version prior to 1.2.2 contain a buffer access vulnerability. | 2.3 |
| 2023-01-18 | CVE-2023-21843 | Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Sound). | 3.7 |
| 2023-01-18 | CVE-2023-21882 | Unspecified vulnerability in Oracle Mysql Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). | 2.7 |
| 2023-01-16 | CVE-2022-4309 | Unspecified vulnerability in Subscribe2 Project Subscribe2 The Subscribe2 WordPress plugin before 10.38 does not have CSRF check when deleting users, which could allow attackers to make a logged in admin delete arbitrary users by knowing their email via a CSRF attack. | 3.1 |
| 2023-01-13 | CVE-2023-22489 | Unspecified vulnerability in Flarum Flarum is a discussion platform for websites. | 3.5 |
| 2023-01-13 | CVE-2023-0091 | Incorrect Authorization vulnerability in Redhat Keycloak A flaw was found in Keycloak, where it did not properly check client tokens for possible revocation in its client credential flow. | 3.8 |
| 2023-01-12 | CVE-2022-4342 | Unspecified vulnerability in Gitlab An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.1 before 15.5.7, all versions starting from 15.6 before 15.6.4, all versions starting from 15.7 before 15.7.2. | 3.8 |
| 2023-01-11 | CVE-2023-20528 | Improper Input Validation vulnerability in AMD products Insufficient input validation in the SMU may allow a physical attacker to exfiltrate SMU memory contents over the I2C bus potentially leading to a loss of confidentiality. | 2.4 |
| 2023-01-10 | CVE-2023-22469 | Unspecified vulnerability in Nextcloud Deck Deck is a kanban style organization tool aimed at personal planning and project organization for teams integrated with Nextcloud. | 3.5 |