Total
4572 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2023-44689 | 1 E-gov | 1 E-gov | 2023-10-18 | N/A | 4.3 MEDIUM |
| e-Gov Client Application (Windows version) versions prior to 2.1.1.0 and e-Gov Client Application (macOS version) versions prior to 1.1.1.0 are vulnerable to improper authorization in handler for custom URL scheme. A crafted URL may direct the product to access an arbitrary website. As a result, the user may become a victim of a phishing attack. | |||||
| CVE-2023-5331 | 1 Mattermost | 1 Mattermost Server | 2023-10-12 | N/A | 5.3 MEDIUM |
| Mattermost fails to properly check the creator of an attached file when adding the file to a draft post, potentially exposing unauthorized file information. | |||||
| CVE-2023-42473 | 1 Sap | 1 S\/4hana | 2023-10-11 | N/A | 5.4 MEDIUM |
| S/4HANA Manage (Withholding Tax Items) - version 106, does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges which has low impact on the confidentiality and integrity of the application. | |||||
| CVE-2023-43700 | 1 Sick | 2 Apu0200, Apu0200 Firmware | 2023-10-11 | N/A | 7.5 HIGH |
| Missing Authorization in RDT400 in SICK APU allows an unprivileged remote attacker to modify data via HTTP requests that no not require authentication. | |||||
| CVE-2023-21291 | 1 Google | 1 Android | 2023-10-11 | N/A | 5.5 MEDIUM |
| In visitUris of Notification.java, there is a possible way to reveal image contents from another user due to a missing permission check. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation. | |||||
| CVE-2023-40642 | 2 Google, Unisoc | 2 Android, Sc9863a | 2023-10-11 | N/A | 5.5 MEDIUM |
| In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed | |||||
| CVE-2023-40643 | 2 Google, Unisoc | 2 Android, Sc9863a | 2023-10-11 | N/A | 5.5 MEDIUM |
| In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed | |||||
| CVE-2023-40645 | 2 Google, Unisoc | 2 Android, Sc9863a | 2023-10-11 | N/A | 5.5 MEDIUM |
| In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed | |||||
| CVE-2023-40647 | 2 Google, Unisoc | 2 Android, Sc9863a | 2023-10-11 | N/A | 5.5 MEDIUM |
| In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed | |||||
| CVE-2023-40646 | 2 Google, Unisoc | 2 Android, Sc9863a | 2023-10-11 | N/A | 5.5 MEDIUM |
| In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed | |||||
| CVE-2023-40644 | 2 Google, Unisoc | 2 Android, Sc9863a | 2023-10-11 | N/A | 5.5 MEDIUM |
| In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed | |||||
| CVE-2023-40649 | 2 Google, Unisoc | 2 Android, Sc9863a | 2023-10-11 | N/A | 5.5 MEDIUM |
| In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed | |||||
| CVE-2023-40650 | 2 Google, Unisoc | 14 Android, S8000, Sc7731e and 11 more | 2023-10-11 | N/A | 5.5 MEDIUM |
| In Telecom service, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed | |||||
| CVE-2023-40648 | 2 Google, Unisoc | 2 Android, Sc9863a | 2023-10-11 | N/A | 5.5 MEDIUM |
| In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed | |||||
| CVE-2023-40640 | 2 Google, Unisoc | 14 Android, S8000, Sc7731e and 11 more | 2023-10-11 | N/A | 5.5 MEDIUM |
| In SoundRecorder service, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges | |||||
| CVE-2023-40641 | 2 Google, Unisoc | 2 Android, Sc9863a | 2023-10-11 | N/A | 5.5 MEDIUM |
| In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed | |||||
| CVE-2023-40635 | 2 Google, Unisoc | 11 Android, S8000, Sc9863a and 8 more | 2023-10-11 | N/A | 7.8 HIGH |
| In linkturbo, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed | |||||
| CVE-2023-40637 | 2 Google, Unisoc | 14 Android, S8000, Sc7731e and 11 more | 2023-10-11 | N/A | 5.5 MEDIUM |
| In telecom service, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges | |||||
| CVE-2023-40638 | 2 Google, Unisoc | 5 Android, S8000, T760 and 2 more | 2023-10-11 | N/A | 4.4 MEDIUM |
| In Telecom service, there is a possible missing permission check. This could lead to local denial of service with System execution privileges needed | |||||
| CVE-2023-40636 | 2 Google, Unisoc | 5 Android, S8000, T760 and 2 more | 2023-10-11 | N/A | 4.4 MEDIUM |
| In telecom service, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with System execution privileges needed | |||||