CVE-2023-35080
https://notcve.org/view.php?id=CVE-2023-35080
A vulnerability has been identified in the Ivanti Secure Access Windows client, which could allow a locally authenticated attacker to exploit a vulnerable configuration, potentially leading to various security risks, including the escalation of privileges, denial of service, or information disclosure. • https://forums.ivanti.com/s/article/Security-fixes-included-in-the-latest-Ivanti-Secure-Access-Client-Release •
CVE-2023-43588
https://notcve.org/view.php?id=CVE-2023-43588
Insufficient control flow management in some Zoom clients may allow an authenticated user to conduct an information disclosure via network access. • https://explore.zoom.us/en/trust/security/security-bulletin • CWE-449: The UI Performs the Wrong Action CWE-691: Insufficient Control Flow Management •
CVE-2023-39199
https://notcve.org/view.php?id=CVE-2023-39199
Cryptographic issues with In-Meeting Chat for some Zoom clients may allow a privileged user to conduct an information disclosure via network access. • https://explore.zoom.us/en/trust/security/security-bulletin • CWE-310: Cryptographic Issues CWE-325: Missing Cryptographic Step •
CVE-2023-47126 – Information Disclosure in Install Tool in typo3/cms-install
https://notcve.org/view.php?id=CVE-2023-47126
In affected versions the login screen of the standalone install tool discloses the full path of the transient data directory (e.g. • https://github.com/TYPO3/typo3/commit/1a735dac01ec7b337ed0d80c738caa8967dea423 https://github.com/TYPO3/typo3/security/advisories/GHSA-p2jh-95jg-2w55 https://typo3.org/security/advisory/typo3-core-sa-2023-005 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVE-2023-22313
https://notcve.org/view.php?id=CVE-2023-22313
Improper buffer restrictions in some Intel(R) QAT Library software before version 22.07.1 may allow a privileged user to potentially enable information disclosure via local access. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00861.html • CWE-92: DEPRECATED: Improper Sanitization of Custom Special Characters CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •