Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-09-16 | CVE-2024-4283 | Open Redirect vulnerability in Gitlab An issue has been discovered in GitLab EE affecting all versions starting from 11.1 before 17.1.7, 17.2 before 17.2.5, and 17.3 before 17.3.2. | 6.1 |
| 2024-09-16 | CVE-2024-6685 | Unspecified vulnerability in Gitlab An issue was discovered in GitLab CE/EE affecting all versions starting from 16.7 prior to 17.1.7, 17.2 prior to 17.2.5, and 17.3 prior to 17.3.2, where group runners information was disclosed to unauthorised group members. | 4.3 |
| 2024-09-16 | CVE-2024-28170 | Unspecified vulnerability in Intel Raid web Console Improper access control in Intel(R) RAID Web Console all versions may allow an authenticated user to potentially enable information disclosure via local access. | 5.5 |
| 2024-09-16 | CVE-2024-32666 | NULL Pointer Dereference vulnerability in Intel Raid web Console NULL pointer dereference in Intel(R) RAID Web Console software for all versions may allow an authenticated user to potentially enable denial of service via local access. | 5.5 |
| 2024-09-16 | CVE-2024-32940 | Unspecified vulnerability in Intel Raid web Console Improper access control in Intel(R) RAID Web Console software for all versions may allow an authenticated user to potentially enable denial of service via adjacent access. low complexity intel | 5.7 |
| 2024-09-16 | CVE-2024-33848 | Unspecified vulnerability in Intel Raid web Console Uncaught exception in Intel(R) RAID Web Console software all versions may allow an authenticated user to potentially enable denial of service via local access. | 5.5 |
| 2024-09-16 | CVE-2024-34545 | Unspecified vulnerability in Intel Raid web Console Improper input validation in some Intel(R) RAID Web Console software all versions may allow an authenticated user to potentially enable information disclosure via adjacent access. low complexity intel | 5.7 |
| 2024-09-16 | CVE-2024-36247 | Unspecified vulnerability in Intel Raid web Console Improper access control in Intel(R) RAID Web Console all versions may allow an authenticated user to potentially enable denial of service via adjacent access. low complexity intel | 5.7 |
| 2024-09-16 | CVE-2024-36261 | Unspecified vulnerability in Intel Raid web Console Improper access control in Intel(R) RAID Web Console software all versions may allow an authenticated user to potentially enable denial of service via adjacent access. low complexity intel | 5.7 |
| 2024-09-16 | CVE-2024-38315 | Insufficient Session Expiration vulnerability in IBM Aspera Shares 1.10.0/1.9.14 IBM Aspera Shares 1.0 through 1.10.0 PL3 does not invalidate session after a password reset which could allow an authenticated user to impersonate another user on the system. | 6.5 |