An information disclosure vulnerability exists in curl <v8.1.0 when doing HTTP(S) transfers, libcurl might erroneously use the read callback (`CURLOPT_READFUNCTION`) to ask for data to send, even. Rated low severity (CVSS 3.7), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.
Information Disclosure
Curl
Fedora
macOS
Clustered Data Ontap
+5
NVD
CVSS 3.1
3.7
EPSS
2.2%
The Gallery app has the risk of hijacking attacks. Rated low severity (CVSS 3.3), this vulnerability is no authentication required, low attack complexity. No vendor patch available.
Race Condition
Information Disclosure
Emui
NVD
CVSS 3.1
3.3
EPSS
0.1%