In certain situations, an attacker with regular user credentials and local access to an ASE cockpit installation can access sensitive information which appears in the installation log files. Rated low severity (CVSS 3.5), this vulnerability is low attack complexity. No vendor patch available.
SAP
Information Disclosure
Adaptive Server Enterprise
NVD
CVSS 3.1
3.5
EPSS
0.4%
Audacity through 2.3.3 saves temporary files to /var/tmp/audacity-$USER by default. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.
Privilege Escalation
Audacity
Fedora
NVD
GitHub
CVSS 3.1
3.3
EPSS
0.5%