'Mobaoku-Auction&Flea Market' App for iOS versions prior to 5.5.16 improperly verifies server certificates, which may allow an attacker to eavesdrop on an encrypted communication via a. Rated low severity (CVSS 3.7), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.
Apple
Information Disclosure
Mobaoku Auction Flea Market
NVD
CVSS 3.1
3.7
EPSS
0.3%
SAP NetWeaver Developer Studio (NWDS) - version 7.50, is based on Eclipse, which contains the logging framework log4j in version 1.x. Rated low severity (CVSS 3.4), this vulnerability is low attack complexity. No vendor patch available.
Deserialization
SAP
Netweaver Developer Studio
NVD
CVSS 3.1
3.4
EPSS
0.2%