Multiple SQL injection vulnerabilities in Maian Support 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) email or (2) pass parameter to admin/index.php.
8.5AI Score
0.008EPSS
Cross-site scripting (XSS) vulnerability in the Support Ticketing System module 6.x-1.x before 6.x-1.7 for Drupal allows remote authenticated users with the "administer support projects" permission to inject arbitrary web script or HTML via unspecified vectors.
5.4AI Score
0.001EPSS
Incorrect default permissions for the Intel(R) Support Android application before 21.07.40 may allow an authenticated user to potentially enable information disclosure via local access.
5.5CVSS
5.1AI Score
0.0004EPSS
Uncontrolled resource consumption in the Intel(R) Support Android application before version 22.02.28 may allow an authenticated user to potentially enable denial of service via local access.
5.9CVSS
5.2AI Score
0.0004EPSS
Incorrect default permissions in the Intel(R) Support Android application before version v22.02.28 may allow a privileged user to potentially enable information disclosure via local access.
4.4CVSS
4.2AI Score
0.0004EPSS
Incorrect default permissions in the Intel(R) Support android application before version v23.02.07 may allow a privileged user to potentially enable information disclosure via local access.
4.4CVSS
4.3AI Score
0.0004EPSS
Improper access control in the Intel Support android application all verions may allow an authenticated user to potentially enable information disclosure via local access.
5.5CVSS
5.1AI Score
0.0004EPSS