Vulnerabilities > Low

DATE CVE VULNERABILITY TITLE RISK
2024-10-15 CVE-2024-21243 Unspecified vulnerability in Oracle Mysql 9.0.0/9.0.1
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Telemetry).
network
high complexity
oracle
2.2
2024-10-15 CVE-2024-21244 Unspecified vulnerability in Oracle Mysql 9.0.0/9.0.1
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Telemetry).
network
high complexity
oracle
2.2
2024-10-15 CVE-2024-21251 Unspecified vulnerability in Oracle Database Server
Vulnerability in the Java VM component of Oracle Database Server.
network
high complexity
oracle
3.1
2024-10-15 CVE-2024-21253 Unspecified vulnerability in Oracle VM Virtualbox
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core).
local
low complexity
oracle
2.3
2024-10-15 CVE-2024-21257 Unspecified vulnerability in Oracle Hyperion Bi+ 11.2.18.0.000
Vulnerability in the Oracle Hyperion BI+ product of Oracle Hyperion (component: UI and Visualization).
low complexity
oracle
3.0
2024-10-14 CVE-2024-48909 Unspecified vulnerability in Authzed Spicedb
SpiceDB is an open source database for scalably storing and querying fine-grained authorization data.
network
low complexity
authzed
2.4
2024-10-14 CVE-2024-45737 Cross-Site Request Forgery (CSRF) vulnerability in Splunk and Splunk Cloud Platform
In Splunk Enterprise versions below 9.3.1, 9.2.3, and 9.1.6 and Splunk Cloud Platform versions below 9.2.2403.108, and 9.1.2312.204, a low-privileged user that does not hold the "admin" or "power" Splunk roles could change the maintenance mode state of App Key Value Store (KVStore) through a Cross-Site Request Forgery (CSRF).
network
low complexity
splunk CWE-352
3.5
2024-10-10 CVE-2024-47869 Information Exposure Through Discrepancy vulnerability in Gradio Project Gradio
Gradio is an open-source Python package designed for quick prototyping.
network
high complexity
gradio-project CWE-203
3.7
2024-10-10 CVE-2024-45120 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Adobe Commerce and Magento
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by a Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability that could lead to a security feature bypass.
network
high complexity
adobe CWE-367
3.1
2024-10-10 CVE-2024-45133 Unspecified vulnerability in Adobe Commerce and Magento
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Information Exposure vulnerability that could result in a security feature bypass.
network
low complexity
adobe
2.7