212 matches found
PT-2026-55909
Name of the Vulnerable Software and Affected Versions Apache Camel versions 4.0.0 through 4.14.7 Apache Camel versions 4.15.0 through 4.18.2 Apache Camel versions 4.19.0 through 4.20.9 Description Improper input validation in the Atmosphere WebSocket component allows an unauthenticated remote...
CVE-2026-34087
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation OATHAuth. This issue affects OATHAuth: from before 1.43.7, 1.44.4, 1.45.2...
Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Mozilla Firefox
CVE-202...
Security Bulletin: Vulnerabilities in commons-codec-1.11.jar affecting MongoDB Enterprised Advanced (CVE-2020-15250, CVE-2025-48924)
Summary There are 2 vulnerabilities in commons-codec-1.11.jar used in MongoDB Enterprised Advanced for IBM, involving CVE-2020-15250, CVE-2025-48924. The vulnerabilities have been addressed. Vulnerability Details IBM X-Force ID: 177835 DESCRIPTION: Apache Commons Codec could allow a remote attack...
Security Bulletin: Security vulnerabilities in Java SE shipped with IBM CICS TX Standard (CVE-2025-53066 and CVE-2025-53057)
Summary There are multiple vulnerabilities in the Java SE version shipped with IBM CICS TX Standard CVE-2025-53066 and CVE-2025-53057. An update to IBM CICS TX Standard has been released to address these vulnerabilities. Vulnerability Details CVEID:CVE-2025-53066 DESCRIPTION: An unspecified...
EUVD-2025-35850
Observable Discrepancy, Exposure of Sensitive Information to an Unauthorized Actor, Exposure of Private Personal Information to an Unauthorized Actor vulnerability in CBK Soft Software Hardware Electronic Computer Systems Industry and Trade Inc. EnVision allows Account Footprinting.This issue...
EUVD-2025-9512
Malicious code in bioql PyPI...
EUVD-2024-42544
Malicious code in bioql PyPI...
EUVD-2023-35083
Malicious code in bioql PyPI...
EUVD-2025-19175
Malicious code in bioql PyPI...
CVE-2025-46388
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor...
CVE-2025-46382
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor...
CVE-2023-47614
A CWE-200: Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists in Telit Cinterion BGS5, Telit Cinterion EHS5/6/8, Telit Cinterion PDS5/6/8, Telit Cinterion ELS61/81, Telit Cinterion PLS62 that could allow a local, low privileged attacker to disclose hidden virtual path...
CVE-2023-30661
Exposure of Sensitive Information vulnerability in getChipInfos in UwbAospAdapterService prior to SMR Jul-2023 Release 1 allows local attackers to access the UWB chipset Identifier...
CVE-2025-23174
Technical details for CVE-2025-23174 are not provided in the connected documents; no specific affected product, version, root cause, impact, or remediation is listed here. Monitor for updates.
CVE-2025-23174 Yoel Geva - CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
CWE-200: Exposure of Sensitive Information to an Unauthorized Actor...
CVE-2024-52280 Users can issue watch commands for arbitrary resources
A Exposure of Sensitive Information to an Unauthorized Actor vulnerability in SUSE rancher which allows users to watch resources they are not allowed to access, when they have at least some generic permissions on the type. This issue affects rancher: before 2175e09, before 6e30359, before c744f0b...
Dell Wyse Management Suite < 5.1 Multiple Vulnerabilities (DSA-2025-135)
The version of Dell Wyse Management Suite installed on the remote host is prior to 5.1. It is, therefore, affected by multiple vulnerabilities as referenced in the DSA-2025-135 advisory. - Dell Wyse Management Suite, versions prior to WMS 5.1, contains an Exposure of Sensitive Information Through...
CVE-2025-23382
Dell Secure Connect Gateway (SCG) 5.0 Appliance – SRS 5.26 is affected by an information disclosure vulnerability (Exposure of Sensitive System Information to an Unauthorized Control Sphere). A high-privilege attacker with remote access could potentially exploit this to obtain sensitive informati...
Siemens SCALANCE X-200RNA Switch Devices Exposure of Sensitive Information to an Unauthorized Actor (CVE-2016-0704)
An oracle protection mechanism in the getclientmasterkey function in s2srvr.c in the SSLv2 implementation in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a overwrites incorrect MASTER-KEY bytes during use of export cipher suites, which makes it easier fo...