Latest CVE Feed
-
2.4
LOWCVE-2023-29063
The FACSChorus workstation does not prevent physical access to its PCI express (PCIe) slots, which could allow a threat actor to insert a PCI card designed for memory capture. A threat actor can then isolate sensitive information such as a BitLocker encry... Read more
- EPSS Score: %0.08
- Published: Nov. 28, 2023
- Modified: Nov. 21, 2024
-
2.4
LOWCVE-2022-33720
Improper authentication vulnerability in AppLock prior to SMR Aug-2022 Release 1 allows physical attacker to access Chrome locked by AppLock via new tap shortcut.... Read more
- EPSS Score: %0.03
- Published: Aug. 05, 2022
- Modified: Nov. 21, 2024
-
2.4
LOWCVE-2024-27314
Zoho ManageEngine ServiceDesk Plus versions below 14730, ServiceDesk Plus MSP below 14720 and SupportCenter Plus below 14720 are vulnerable to stored XSS in the Custom Actions menu on the request details. This vulnerability can be exploited only by the SD... Read more
- Published: May. 27, 2024
- Modified: Jun. 17, 2025
-
2.4
LOWCVE-2024-4211
Improper Validation of Specified Quantity in Input vulnerability in OpenText OpenText Application Automation Tools allows Exploiting Incorrectly Configured Access Control Security Levels. Multiple missing permission checks - ALM job config has been disc... Read more
Affected Products : application_automation_tools- Published: Oct. 16, 2024
- Modified: Oct. 21, 2024
-
2.4
LOWCVE-2025-6748
A vulnerability classified as problematic has been found in Bharti Airtel Thanks App 4.105.4 on Android. Affected is an unknown function of the file /Android/data/com.myairtelapp/files/. The manipulation leads to cleartext storage in a file or on disk. It... Read more
Affected Products :- Published: Jun. 27, 2025
- Modified: Jun. 30, 2025
- Vuln Type: Misconfiguration
-
2.4
LOWCVE-2025-1420
Input provided in a field containing "activationMessage" in Konsola Proget is not sanitized correctly, allowing a high-privileged user to perform a Stored Cross-Site Scripting attack. This issue has been fixed in 2.17.5 version of Konsola Proget (server... Read more
Affected Products :- Published: May. 21, 2025
- Modified: May. 21, 2025
- Vuln Type: Cross-Site Scripting
-
2.4
LOWCVE-2025-1419
Input provided in comment section of Konsola Proget is not sanitized correctly, allowing a high-privileged user to perform a Stored Cross-Site Scripting attack. This issue has been fixed in 2.17.5 version of Konsola Proget (server part of the MDM suite)... Read more
Affected Products :- Published: May. 21, 2025
- Modified: May. 21, 2025
- Vuln Type: Cross-Site Scripting
-
2.4
LOWCVE-2024-44251
This issue was addressed through improved state management. This issue is fixed in iOS 18.1 and iPadOS 18.1. An attacker may be able to view restricted content from the lock screen.... Read more
- Published: Oct. 28, 2024
- Modified: Dec. 06, 2024
-
2.4
LOWCVE-2024-44180
The issue was addressed with improved checks. This issue is fixed in iOS 18 and iPadOS 18. An attacker with physical access may be able to access contacts from the lock screen.... Read more
- Published: Sep. 17, 2024
- Modified: Mar. 13, 2025
-
2.4
LOWCVE-2021-1756
A lock screen issue allowed access to contacts on a locked device. This issue was addressed with improved state management. This issue is fixed in iOS 14.4 and iPadOS 14.4. An attacker with physical access to a device may be able to see private contact in... Read more
- EPSS Score: %0.06
- Published: Apr. 02, 2021
- Modified: Nov. 21, 2024
-
2.4
LOWCVE-2021-30816
The issue was addressed with improved permissions logic. This issue is fixed in iOS 15 and iPadOS 15. An attacker with physical access to a device may be able to see private contact information.... Read more
- EPSS Score: %0.05
- Published: Oct. 28, 2021
- Modified: Nov. 21, 2024
-
2.4
LOWCVE-2016-1852
Siri in Apple iOS before 9.3.2 does not block data detectors within results in the lock-screen state, which allows physically proximate attackers to obtain sensitive contact and photo information via unspecified vectors.... Read more
Affected Products : iphone_os- EPSS Score: %0.07
- Published: May. 20, 2016
- Modified: Apr. 12, 2025
-
2.4
LOWCVE-2020-3891
A logic issue was addressed with improved state management. This issue is fixed in iOS 13.4 and iPadOS 13.4, watchOS 6.2. A person with physical access to a locked iOS device may be able to respond to messages even when replies are disabled.... Read more
- EPSS Score: %0.05
- Published: Apr. 01, 2020
- Modified: Nov. 21, 2024
-
2.4
LOWCVE-2024-44139
The issue was addressed with improved checks. This issue is fixed in iOS 18 and iPadOS 18. An attacker with physical access may be able to access contacts from the lock screen.... Read more
- Published: Sep. 17, 2024
- Modified: Mar. 20, 2025
-
2.4
LOWCVE-2019-8799
This issue was resolved by replacing device names with a random identifier. This issue is fixed in iOS 13.1 and iPadOS 13.1, macOS Catalina 10.15, watchOS 6, tvOS 13. An attacker in physical proximity may be able to passively observe device names in AWDL ... Read more
- EPSS Score: %0.07
- Published: Oct. 27, 2020
- Modified: Nov. 21, 2024
-
2.4
LOWCVE-2014-0404
Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox prior to 3.2.20, 4.0.22, 4.1.30, 4.2.20, and 4.3.4 allows local users to affect integrity and availability via unknown vectors related to Core, a different... Read more
Affected Products : vm_virtualbox- EPSS Score: %0.06
- Published: Jan. 15, 2014
- Modified: Apr. 11, 2025
-
2.4
LOWCVE-2024-27803
A permissions issue was addressed with improved validation. This issue is fixed in iOS 17.5 and iPadOS 17.5. An attacker with physical access may be able to share items from the lock screen.... Read more
- Published: May. 14, 2024
- Modified: Mar. 25, 2025
-
2.4
LOWCVE-2020-9959
A lock screen issue allowed access to messages on a locked device. This issue was addressed with improved state management. This issue is fixed in iOS 14.0 and iPadOS 14.0. A person with physical access to an iOS device may be able to view notification co... Read more
- EPSS Score: %0.05
- Published: Oct. 16, 2020
- Modified: Nov. 21, 2024
-
2.4
LOWCVE-2020-3828
A lock screen issue allowed access to contacts on a locked device. This issue was addressed with improved state management. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1. A person with physical access to an iOS device may be able to access contacts ... Read more
- EPSS Score: %0.15
- Published: Feb. 27, 2020
- Modified: Nov. 21, 2024
-
2.4
LOWCVE-2023-42874
This issue was addressed with improved state management. This issue is fixed in macOS Sonoma 14.2. Secure text fields may be displayed via the Accessibility Keyboard when using a physical keyboard.... Read more
Affected Products : macos- EPSS Score: %0.07
- Published: Dec. 12, 2023
- Modified: Nov. 21, 2024