Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:24 p.m.7 views

CVE-2026-8204

Concrete CMS 9.5.0 and below is vulnerable to authorization Bypass in the Calendar Event Frontend Dialog which can allow cross-calendar data disclosure. A public calendar block can be used as a pivot point to access private calendar data. The Concrete CMS security team gave this vulnerability a...

6.3CVSS5.4AI score0.00211EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/21 8:56 p.m.8 views

CVE-2026-8204 Concrete CMS 9.5.0 and below is vulnerable to Authorization Bypass in the Calendar Event Frontend Dialog

Concrete CMS 9.5.0 and below is vulnerable to authorization Bypass in the Calendar Event Frontend Dialog which can allow cross-calendar data disclosure. A public calendar block can be used as a pivot point to access private calendar data. The Concrete CMS security team gave this vulnerability a...

6.3CVSS5.8AI score0.00211EPSS
Exploits0References1
CVE
CVE
added 2026/05/21 8:56 p.m.22 views

CVE-2026-8204

Concrete CMS 9.5.0 and earlier versions are vulnerable to an authorization bypass in the Calendar Event Frontend Dialog, enabling potential cross-calendar data disclosure. A public calendar block can be used as a pivot to access private calendar data. The CVSS v4.0 base score is 6.3 (AV:N/AC:L/AT...

6.3CVSS5.8AI score0.00211EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/01/10 12:0 a.m.4 views

Apple iOS and iPadOS Security Vulnerabilities

Apple iOS and Apple iPadOS are products of Apple Inc. Apple iOS is an operating system developed for mobile devices, and Apple iPadOS is an operating system for iPad tablets. A security vulnerability exists in Apple iOS version 17 and iPadOS version 17, which arises from the fact that a person wi...

2.4CVSS5.8AI score0.00215EPSS
Exploits0References3
OSV
OSV
added 2023/04/10 7:15 p.m.4 views

CVE-2022-32871

A logic issue was addressed with improved restrictions. This issue is fixed in iOS 16. A person with physical access to a device may be able to use Siri to access private calendar information...

2.4CVSS5.3AI score0.00256EPSS
Exploits0References1
Rows per page
Query Builder