CVE-2022-45433

LOW Year: 2022
CVSS v3 Score
3.7
Low
Weakness Type
CWE-306
View all →

Vulnerability Description

Some Dahua software products have a vulnerability of unauthenticated traceroute host from remote DSS Server. After bypassing the firewall access control policy, by sending a specific crafted packet to the vulnerable interface, an attacker could get the traceroute results.

Related Vulnerabilities

CVE-2020-13837

LOW
CVSS:3.5(Low)

An issue was discovered on Samsung mobile devices with Q(10.0) software. The Lockscreen feature does not block Quick Panel access to Music Share. The Samsung ID is SVE-2020-17145 (June 2020).

CWE-3062020

CVE-2020-13838

LOW
CVSS:3.5(Low)

An issue was discovered on Samsung mobile devices with P(9.0) and Q(10.0) software. The DeX Lockscreen feature does not block access to Quick Panel and notifications. The Samsung ID is SVE-2020-17187 ...

CWE-3062020

CVE-2021-39879

LOW
CVSS:3.5(Low)

Missing authentication in all versions of GitLab CE/EE since version 7.11.0 allows an attacker with access to a victim's session to disable two-factor authentication

CWE-3062021

CVE-2023-0919

LOW
CVSS:3.5(Low)

Missing Authentication for Critical Function in GitHub repository kareadita/kavita prior to 0.7.0.

CWE-3062023

CVE-2024-31684

LOW
CVSS:3.5(Low)

Incorrect access control in the fingerprint authentication mechanism of Bitdefender Mobile Security v4.11.3-gms allows attackers to bypass fingerprint authentication due to the use of a deprecated API...

CWE-3062024

CVE-2024-55538

MEDIUM
CVSS:4.0(Medium)

Sensitive information disclosure due to missing authentication. The following products are affected: Acronis True Image (macOS) before build 41725, Acronis True Image (Windows) before build 41736.

CWE-3062024