Okta Active Directory Agent versions 3.8.0 through 3.11.0 installed the Okta AD Agent Update Service using an unquoted path. Rated low severity (CVSS 3.9). No vendor patch available.
A missing cryptographic steps vulnerability [CWE-325] in the functions that encrypt the keytab files in FortiOS version 7.2.0, 7.0.0 through 7.0.5 and below 7.0.0 may allow an attacker in possession. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.
Nextcloud Password Policy is an app that enables a Nextcloud server admin to define certain rules for passwords. Rated low severity (CVSS 2.7), this vulnerability is remotely exploitable, low attack complexity.