Skip to main content
CVE-2023-3558 MEDIUM This Month

A vulnerability classified as problematic has been found in GZ Scripts Event Booking Calendar 1.8. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

PHP XSS Event Booking Calendar
NVD VulDB
CVSS 3.1
5.4
EPSS
0.5%
CVE-2023-35697 MEDIUM This Month

Improper Restriction of Excessive Authentication Attempts in the SICK ICR890-4 could allow a remote attacker to brute-force user credentials. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Icr890 4 Firmware
NVD
CVSS 3.1
5.3
EPSS
0.4%
CVE-2023-35698 MEDIUM This Month

Observable Response Discrepancy in the SICK ICR890-4 could allow a remote attacker to identify valid usernames for the FTP server from the response given during a failed login attempt. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Icr890 4 Firmware
NVD VulDB
CVSS 3.1
5.3
EPSS
0.3%
CVE-2023-35699 MEDIUM This Month

Cleartext Storage on Disk in the SICK ICR890-4 could allow an unauthenticated attacker with local access to the device to disclose sensitive information by accessing a SD card. Rated medium severity (CVSS 5.3), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Icr890 4 Firmware
NVD
CVSS 3.1
5.3
EPSS
0.1%
CVE-2023-30956 MEDIUM This Month

A security defect was identified in Foundry Comments that enabled a user to discover the contents of an attachment submitted to another comment if they knew the internal UUID of the target. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable. No vendor patch available.

Authentication Bypass Foundry Comments
NVD
CVSS 3.1
5.3
EPSS
0.5%
CVE-2023-3568 MEDIUM This Month

Open Redirect in GitHub repository alextselegidis/easyappointments prior to 1.5.0. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Open Redirect Fossbilling
NVD GitHub
CVSS 3.1
4.8
EPSS
0.4%
CVE-2023-30960 MEDIUM This Month

A security defect was discovered in Foundry job-tracker that enabled users to query metadata related to builds on resources they did not have access to. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Foundry Job Tracker
NVD
CVSS 3.1
4.3
EPSS
0.4%
CVE-2023-24490 MEDIUM This Month

Users with only access to launch VDA applications can launch an unauthorized desktop. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Virtual Apps And Desktops Linux Virtual Delivery Agent
NVD
CVSS 3.1
4.3
EPSS
0.3%
CVE-2023-35887 MEDIUM PATCH This Month

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Software Foundation Apache MINA. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Apache Path Traversal Sshd
NVD
CVSS 3.1
4.3
EPSS
1.3%
CVE-2023-28953 MEDIUM PATCH This Month

IBM Cognos Analytics on Cloud Pak for Data 4.0 could allow an attacker to make system calls that might compromise the security of the containers due to misconfigured security context. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure IBM Cognos Analytics Cartridge For Ibm Cloud Pak For Data
NVD
CVSS 3.1
4.3
EPSS
0.7%
CVE-2023-23487 MEDIUM PATCH This Month

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1 and 11.5 is vulnerable to insufficient audit logging. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Microsoft IBM Db2
NVD
CVSS 3.1
4.3
EPSS
0.8%
Prev Page 2 of 2

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy