The Phone Messages feature in Cybozu Garoon 2.0.0 through 3.7 SP2 allows remote authenticated users to cause a denial of service (resource consumption) via unspecified vectors. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable. No vendor patch available.
Denial Of Service
Garoon
NVD
VulDB
CVSS 2.0
3.5
EPSS
0.4%
virt-who uses world-readable permissions for /etc/sysconfig/virt-who, which allows local users to obtain password for hypervisors by reading the file. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.
Information Disclosure
Enterprise Linux Desktop
Enterprise Linux Server
Enterprise Linux Workstation
Virt Who
NVD
VulDB
CVSS 2.0
2.1
EPSS
0.1%