2023 CVE Vulnerabilities
31,213 CVEs published in 2023.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2023-22771 | LOW | 2.4 | 0.4% | Mar 1, 2023 | An insufficient session expiration vulnerability exists in the ArubaOS command line interface. Successful exploitation o... |
| CVE-2023-20932 | LOW | 3.3 | 0.1% | Feb 28, 2023 | In onCreatePreferences of EditInfoFragment.java, there is a possible way to read contacts belonging to other users due t... |
| CVE-2023-23505 | LOW | 3.3 | 0.2% | Feb 27, 2023 | A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Montere... |
| CVE-2023-23498 | LOW | 3.3 | 0.2% | Feb 27, 2023 | A logic issue was addressed with improved state management. This issue is fixed in iOS 15.7.3 and iPadOS 15.7.3, macOS V... |
| CVE-2023-23493 | LOW | 3.3 | 0.2% | Feb 27, 2023 | A logic issue was addressed with improved state management. This issue is fixed in macOS Ventura 13.2, macOS Monterey 12... |
| CVE-2023-27266 | LOW | 2.7 | 0.5% | Feb 27, 2023 | Mattermost fails to honor the ShowEmailAddress setting when constructing a response to the /api/v4/users/me/teams API e... |
| CVE-2023-27265 | LOW | 2.7 | 0.5% | Feb 27, 2023 | Mattermost fails to honor the ShowEmailAddress setting when constructing a response to the "Regenerate Invite Id" API en... |
| CVE-2023-22636 | LOW | 3.3 | 0.2% | Feb 27, 2023 | An unauthorized configuration download vulnerability in FortiWeb 6.3.6 through 6.3.21, 6.4.0 through 6.4.2 and 7.0.0 thr... |
| CVE-2023-0481 | LOW | 3.3 | 0.2% | Feb 24, 2023 | In RestEasy Reactive implementation of Quarkus the insecure File.createTempFile() is used in the FileBodyHandler class w... |
| CVE-2023-0919 | LOW | 3.5 | 0.5% | Feb 19, 2023 | Missing Authentication for Critical Function in GitHub repository kareadita/kavita prior to 0.7.0. |
| CVE-2023-23847 | LOW | 3.5 | 0.4% | Feb 15, 2023 | A cross-site request forgery (CSRF) vulnerability in Synopsys Jenkins Coverity Plugin 3.0.2 and earlier allows attackers... |
| CVE-2023-23934 | LOW | 3.5 | 0.5% | Feb 14, 2023 | Werkzeug is a comprehensive WSGI web application library. Browsers may allow "nameless" cookies that look like `=value` ... |
| CVE-2023-24566 | LOW | 3.3 | 0.2% | Feb 14, 2023 | A vulnerability has been identified in Solid Edge SE2022 (All versions < V222.0MP12), Solid Edge SE2022 (All versions), ... |
| CVE-2023-24565 | LOW | 3.3 | 0.2% | Feb 14, 2023 | A vulnerability has been identified in Solid Edge SE2022 (All versions < V222.0MP12), Solid Edge SE2022 (All versions), ... |
| CVE-2023-24572 | LOW | 3.3 | 0.2% | Feb 13, 2023 | Dell Command | Integration Suite for System Center, versions before 6.4.0 contain an arbitrary folder delete vulnerabil... |
| CVE-2023-23697 | LOW | 3.3 | 0.2% | Feb 13, 2023 | Dell Command | Intel vPro Out of Band, versions before 4.4.0, contain an arbitrary folder delete vulnerability during un... |
| CVE-2023-0785 | LOW | 3.7 | 0.9% | Feb 12, 2023 | A vulnerability classified as problematic was found in SourceCodester Best Online News Portal 1.0. Affected by this vuln... |
| CVE-2023-21450 | LOW | 2.1 | 0.3% | Feb 9, 2023 | Missing Authorization vulnerability in One Hand Operation + prior to version 6.1.21 allows multi-users to access owner&#... |
| CVE-2023-21448 | LOW | 3.3 | 0.2% | Feb 9, 2023 | Path traversal vulnerability in Samsung Cloud prior to version 5.3.0.32 allows attacker to access specific png file. |
| CVE-2023-21447 | LOW | 3.3 | 0.1% | Feb 9, 2023 | Improper access control vulnerabilities in Samsung Cloud prior to version 5.3.0.32 allows local attackers to access info... |
| CVE-2023-21438 | LOW | 2.4 | 0.2% | Feb 9, 2023 | Improper logic in HomeScreen prior to SMR Feb-2023 Release 1 allows physical attacker to access App preview protected by... |
| CVE-2023-21436 | LOW | 3.3 | 0.1% | Feb 9, 2023 | Improper usage of implicit intent in Contacts prior to SMR Feb-2023 Release 1 allows attacker to get account ID. |
| CVE-2023-21431 | LOW | 3.3 | 0.2% | Feb 9, 2023 | Improper input validation in Bixby Vision prior to version 3.7.70.17 allows attacker to access data of Bixby Vision. |
| CVE-2023-21429 | LOW | 3.3 | 0.2% | Feb 9, 2023 | Improper usage of implict intent in ePDG prior to SMR JAN-2023 Release 1 allows attacker to access SSID. |
| CVE-2023-21428 | LOW | 3.3 | 0.2% | Feb 9, 2023 | Improper input validation vulnerability in TelephonyUI prior to SMR Jan-2023 Release 1 allows attackers to configure Pre... |
Check if your code is affected by 2023 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now