Search Results (Refine Search)
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2023-51428 |
Some Honor products are affected by type confusion vulnerability, successful exploitation could cause information leak. Published: December 28, 2023; 11:15:09 PM -0500 |
V4.0:(not available) V3.1: 7.1 HIGH V2.0:(not available) |
CVE-2023-51427 |
Some Honor products are affected by type confusion vulnerability, successful exploitation could cause information leak. Published: December 28, 2023; 11:15:09 PM -0500 |
V4.0:(not available) V3.1: 7.1 HIGH V2.0:(not available) |
CVE-2023-51426 |
Some Honor products are affected by type confusion vulnerability, successful exploitation could cause information leak. Published: December 28, 2023; 11:15:09 PM -0500 |
V4.0:(not available) V3.1: 7.1 HIGH V2.0:(not available) |
CVE-2023-31296 |
CSV Injection vulnerability in Sesami Cash Point & Transport Optimizer (CPTO) version 6.3.8.6 (#718), allows attackers to obtain sensitive information via the User Name field. Published: December 28, 2023; 11:15:09 PM -0500 |
V4.0:(not available) V3.1: 5.3 MEDIUM V2.0:(not available) |
CVE-2023-23443 |
Some Honor products are affected by type confusion vulnerability, successful exploitation could cause information leak. Published: December 28, 2023; 11:15:08 PM -0500 |
V4.0:(not available) V3.1: 7.1 HIGH V2.0:(not available) |
CVE-2023-23442 |
Some Honor products are affected by type confusion vulnerability, successful exploitation could cause information leak. Published: December 28, 2023; 11:15:08 PM -0500 |
V4.0:(not available) V3.1: 7.1 HIGH V2.0:(not available) |
CVE-2023-23441 |
Some Honor products are affected by out of bounds read vulnerability, successful exploitation could cause information leak. Published: December 28, 2023; 11:15:08 PM -0500 |
V4.0:(not available) V3.1: 5.5 MEDIUM V2.0:(not available) |
CVE-2023-7148 |
A vulnerability has been found in ShifuML shifu 0.12.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file src/main/java/ml/shifu/shifu/core/DataPurifier.java of the component Java Expression Language Handler. The manipulation of the argument FilterExpression leads to code injection. The attack can be launched remotely. The complexity of an attack is rather high. The exploitation appears to be difficult. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-249151. Published: December 28, 2023; 10:15:12 PM -0500 |
V4.0:(not available) V3.1: 8.1 HIGH V2.0:(not available) |
CVE-2023-7147 |
A vulnerability, which was classified as critical, was found in gopeak MasterLab up to 3.3.10. Affected is the function base64ImageContent of the file app/ctrl/User.php. The manipulation of the argument image leads to unrestricted upload. It is possible to launch the attack remotely. VDB-249150 is the identifier assigned to this vulnerability. Published: December 28, 2023; 10:15:11 PM -0500 |
V4.0:(not available) V3.1: 9.8 CRITICAL V2.0:(not available) |
CVE-2023-31294 |
CSV Injection vulnerability in Sesami Cash Point & Transport Optimizer (CPTO) version 6.3.8.6 (#718), allows remote attackers to obtain sensitive information via the Delivery Name field. Published: December 28, 2023; 10:15:10 PM -0500 |
V4.0:(not available) V3.1: 7.5 HIGH V2.0:(not available) |
CVE-2023-31293 |
An issue was discovered in Sesami Cash Point & Transport Optimizer (CPTO) 6.3.8.6 (#718), allows remote attackers to obtain sensitive information and bypass profile restriction via improper access control in the Reader system user's web browser, allowing the journal to be displayed, despite the option being disabled. Published: December 28, 2023; 10:15:10 PM -0500 |
V4.0:(not available) V3.1: 4.3 MEDIUM V2.0:(not available) |
CVE-2023-23440 |
Some Honor products are affected by information leak vulnerability, successful exploitation could cause the information leak. Published: December 28, 2023; 10:15:10 PM -0500 |
V4.0:(not available) V3.1: 5.5 MEDIUM V2.0:(not available) |
CVE-2023-23439 |
Some Honor products are affected by information leak vulnerability, successful exploitation could cause the information leak. Published: December 28, 2023; 10:15:10 PM -0500 |
V4.0:(not available) V3.1: 5.5 MEDIUM V2.0:(not available) |
CVE-2023-23438 |
Some Honor products are affected by incorrect privilege assignment vulnerability, successful exploitation could cause device service exceptions Published: December 28, 2023; 10:15:10 PM -0500 |
V4.0:(not available) V3.1: 5.5 MEDIUM V2.0:(not available) |
CVE-2023-23437 |
Some Honor products are affected by information leak vulnerability, successful exploitation could cause the information leak Published: December 28, 2023; 10:15:10 PM -0500 |
V4.0:(not available) V3.1: 5.5 MEDIUM V2.0:(not available) |
CVE-2023-23430 |
Some Honor products are affected by incorrect privilege assignment vulnerability, successful exploitation could cause device service exceptions. Published: December 28, 2023; 10:15:09 PM -0500 |
V4.0:(not available) V3.1: 7.5 HIGH V2.0:(not available) |
CVE-2023-23429 |
Some Honor products are affected by incorrect privilege assignment vulnerability, successful exploitation could cause device service exceptions. Published: December 28, 2023; 10:15:09 PM -0500 |
V4.0:(not available) V3.1: 7.5 HIGH V2.0:(not available) |
CVE-2023-23428 |
Some Honor products are affected by incorrect privilege assignment vulnerability, successful exploitation could cause device service exceptions. Published: December 28, 2023; 10:15:09 PM -0500 |
V4.0:(not available) V3.1: 7.5 HIGH V2.0:(not available) |
CVE-2023-23427 |
Some Honor products are affected by incorrect privilege assignment vulnerability, successful exploitation could cause device service exceptions. Published: December 28, 2023; 10:15:09 PM -0500 |
V4.0:(not available) V3.1: 7.5 HIGH V2.0:(not available) |
CVE-2023-23426 |
Some Honor products are affected by file writing vulnerability, successful exploitation could cause information disclosure. Published: December 28, 2023; 10:15:09 PM -0500 |
V4.0:(not available) V3.1: 5.5 MEDIUM V2.0:(not available) |