Vulnerabilities > Medium

DATE CVE VULNERABILITY TITLE RISK
2025-01-27 CVE-2025-24161 Unspecified vulnerability in Apple products
The issue was addressed with improved checks.
local
low complexity
apple
5.5
5.5
2025-01-27 CVE-2025-0753 A vulnerability classified as critical was found in Axiomatic Bento4 up to 1.6.0.
network
low complexity
CWE-122
6.3
6.3
2025-01-27 CVE-2025-0751 A vulnerability classified as critical has been found in Axiomatic Bento4 up to 1.6.0.
network
low complexity
CWE-122
6.3
6.3
2025-01-27 CVE-2025-0734 A vulnerability has been found in y_project RuoYi up to 4.8.0 and classified as critical.
network
low complexity
CWE-502
4.7
4.7
2025-01-27 CVE-2025-0732 A vulnerability, which was classified as problematic, has been found in Discord up to 1.0.9177 on Windows.
local
high complexity
CWE-426
4.5
4.5
2025-01-27 CVE-2025-0733 A vulnerability, which was classified as problematic, was found in Postman up to 11.20 on Windows.
local
high complexity
CWE-426
4.5
4.5
2025-01-27 CVE-2025-0729 A vulnerability was found in TP-Link TL-SG108E 1.0.0 Build 20201208 Rel.
network
low complexity
CWE-451
4.3
4.3
2025-01-27 CVE-2023-47159 IBM Sterling File Gateway 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.1 could allow an authenticated user to enumerate usernames due to an observable discrepancy in request responses.
network
low complexity
CWE-204
4.3
4.3
2025-01-27 CVE-2023-52292 IBM Sterling File Gateway 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.3 is vulnerable to stored cross-site scripting.
network
low complexity
CWE-79
6.4
6.4
2025-01-27 CVE-2024-22316 IBM Sterling File Gateway 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.1 could allow an authenticated user to perform unauthorized actions to another user's data due to improper access controls.
network
low complexity
CWE-284
4.3
4.3