Vulnerabilities > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-09-30 | CVE-2022-34428 | Unspecified vulnerability in Dell Hybrid Client Dell Hybrid Client prior to version 1.8 contains a Regular Expression Denial of Service Vulnerability in the UI. | 2.7 |
| 2022-09-29 | CVE-2020-27601 | Exposure of Resource to Wrong Sphere vulnerability in Bigbluebutton In BigBlueButton before 2.2.7, lockSettingsProps.disablePrivateChat does not apply to already opened chats. | 3.5 |
| 2022-09-28 | CVE-2022-34394 | Improper Certificate Validation vulnerability in Dell Smartfabric Os10 10.5.3.4 Dell OS10, version 10.5.3.4, contains an Improper Certificate Validation vulnerability in Support Assist. | 3.7 |
| 2022-09-28 | CVE-2022-40707 | Out-of-bounds Read vulnerability in Trendmicro Deep Security Agent 20.0 An Out-of-bounds read vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local attacker to disclose sensitive information on affected installations. | 3.3 |
| 2022-09-28 | CVE-2022-40708 | Out-of-bounds Read vulnerability in Trendmicro Deep Security Agent 20.0 An Out-of-bounds read vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local attacker to disclose sensitive information on affected installations. | 3.3 |
| 2022-09-28 | CVE-2022-40709 | Out-of-bounds Read vulnerability in Trendmicro Deep Security Agent 20.0 An Out-of-bounds read vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local attacker to disclose sensitive information on affected installations. | 3.3 |
| 2022-09-28 | CVE-2022-38934 | Out-of-bounds Read vulnerability in Toaruos 2.0.1 readelf in ToaruOS 2.0.1 has some arbitrary address read vulnerabilities when parsing a crafted ELF file. | 3.3 |
| 2022-09-28 | CVE-2021-43980 | The simplified implementation of blocking reads and writes introduced in Tomcat 10 and back-ported to Tomcat 9.0.47 onwards exposed a long standing (but extremely hard to trigger) concurrency bug in Apache Tomcat 10.1.0 to 10.1.0-M12, 10.0.0-M1 to 10.0.18, 9.0.0-M1 to 9.0.60 and 8.5.0 to 8.5.77 that could cause client connections to share an Http11Processor instance resulting in responses, or part responses, to be received by the wrong client. | 3.7 |
| 2022-09-27 | CVE-2022-40199 | Path Traversal vulnerability in Ec-Cube Directory traversal vulnerability in EC-CUBE 3 series (EC-CUBE 3.0.0 to 3.0.18-p4 ) and EC-CUBE 4 series (EC-CUBE 4.0.0 to 4.1.2) allows a remote authenticated attacker with an administrative privilege to obtain the product's directory structure information. | 2.7 |
| 2022-09-26 | CVE-2022-3301 | Unspecified vulnerability in Ikus-Soft Rdiffweb Improper Cleanup on Thrown Exception in GitHub repository ikus060/rdiffweb prior to 2.4.8. | 2.4 |