Lucene search
K

63 matches found

CVE
CVE
added yesterday12 views

CVE-2026-14808

CVE-2026-14808 concerns the Prog Management System from PROG MIS, with an exposed sensitive-information vulnerability. Unauthenticated remote attackers can access a specific page and obtain the database account and password, leading to high-impact confidentiality and integrity risks (CVSS ~9.3–9....

9.8CVSS6AI score0.00507EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2026/06/26 10:58 a.m.8 views

Security Bulletin: Multiple Security Vulnerabilities in IBM Sterling Partner Engagement Manager.

Summary Multiple vulnerabilities were addressed in IBM Sterling Partner Engagement Manager versions 6.3.0.0, 6.2.4.4, and 6.2.3.6. Vulnerability Details CVEID:CVE-2023-47038 DESCRIPTION: A vulnerability was found in perl 5.30.0 through 5.38.0. This issue occurs when a crafted regular expression i...

8.7CVSS6.2AI score0.02448EPSS
Exploits1Affected Software1
GithubExploit
GithubExploit
added 2026/06/04 1:52 a.m.87 views

Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Microsoft

CVE-2026-33829 - Security Vulnerability Quick Usage ba...

4.3CVSS6AI score0.03447EPSS
Exploits5
ATTACKERKB
ATTACKERKB
added 2026/05/20 2:30 p.m.10 views

CVE-2025-32750

Dell PowerFlex Manager, versions =4.6.2, contains an Exposure of Information Through Directory Listing vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Information exposure...

7.5CVSS5.8AI score0.0035EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/03/25 8:40 p.m.4 views

CVE-2026-1014 IBM InfoSphere Information Server is vulnerable due to disclosure of sensitive information

IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 is vulnerable to exposure of sensitive information via JSON server response manipulation...

6.5CVSS5.8AI score0.00214EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/02 4:53 p.m.35 views

CVE-2025-47378 Exposure of Sensitive System Information to an Unauthorized Control Sphere in HLOS

Cryptographic Issue when a shared VM reference allows HLOS to boot loader and access cert chain...

7.1CVSS0.0007EPSS
Exploits0References1
NVD
NVD
added 2026/02/27 2:16 a.m.8 views

CVE-2026-24498

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in EFM-Networks, Inc. IpTIME T5008, EFM-Networks, Inc. IpTIME AX2004M, EFM-Networks, Inc. IpTIME AX3000Q, EFM-Networks, Inc. IpTIME AX6000M allows Authentication Bypass.This issue affects ipTIME T5008: through 15.26.8; ipTIM...

7.5CVSS0.0041EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2026/02/03 6:3 a.m.7 views

Security Bulletin: Vulnerabilities in IBM Semeru SDK (CVE-2025-53057, CVE-2025-53066) affect Power HMC.

Summary The IBM Semeru SDK is used by Power Hardware Management Console HMC. HMC has addressed the applicable CVEs. Vulnerability Details CVEID:CVE-2025-53057 DESCRIPTION: An unspecified vulnerability in Java SE related to the Security component could allow a remote attacker to cause no...

7.5CVSS5.6AI score0.00633EPSS
Exploits0Affected Software1
NVD
NVD
added 2025/12/29 6:15 a.m.6 views

CVE-2025-15070

Exposure of Sensitive Information to an Unauthorized Actor, Missing Authorization vulnerability in Gmission Web Fax allows Authentication Abuse. This issue affects Web Fax: from 3.0 before 3.0.1...

6.8CVSS0.00294EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2025/12/22 10:46 a.m.9 views

Security Bulletin: IBM Sterling Connect:Direct File Agent is vulnerable to multiple issues due to IBM Runtime Environment Java Technology Edition

Summary IBM Sterling Connect:Direct File Agent uses IBM Runtime Environment Java Technology Edition, Version 7 and 8. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2025-53066 DESCRIPTION: An unspecified vulnerability in Java SE related ...

7.5CVSS6.3AI score0.00633EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/12/17 12:23 p.m.7 views

Security Bulletin: IBM MQ is affected by multiple Java vulnerabilities (CVE-2025-53057, CVE-2025-53066)

Summary Multiple issues were identified with the IBM Runtime Environment, Java Technology Edition and IBM Semeru Runtime Environment which are shipped with IBM MQ Vulnerability Details CVEID:CVE-2025-53057 DESCRIPTION: An unspecified vulnerability in Java SE related to the Security component coul...

7.5CVSS6.2AI score0.00633EPSS
Exploits0Affected Software1
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.4 views

PT-2025-49939

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in sizam Rehub rehub-theme allows Retrieve Embedded Sensitive Data.This issue affects Rehub: from n/a through = 19.9.9.1...

5.3CVSS6.9AI score0.0024EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2025/11/26 10:44 a.m.6 views

Security Bulletin: IBM App Connect Enterprise is vulnerable to multiple vulnerabilities due to IBM Semeru Runtime (CVE-2025-53057 & CVE-2025-53066))

Summary IBM App Connect Enterprise is vulnerable to Improper Access Control and Exposure of Sensitive Information to an Unauthorized Actor due to IBM Semeru Runtime. Vulnerability Details CVEID:CVE-2025-53057 DESCRIPTION: An unspecified vulnerability in Java SE related to the Security component...

7.5CVSS6.3AI score0.00633EPSS
Exploits0Affected Software1
Cvelist
Cvelist
added 2025/11/14 3:0 a.m.9 views

CVE-2025-13160 IQ Service International|IQ-Support - Exposure of Sensitive Information

IQ-Support developed by IQ Service International has a Exposure of Sensitive Information vulnerability, allowing unauthenticated remote attackers to access specific APIs to obtain sensitive information from the internal network...

6.9CVSS0.00277EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/10/27 12:0 a.m.8 views

Siemens SINEC OS Exposure of Sensitive Information to an Unauthorized Actor (CVE-2025-40803)

The affected device exposes certain non-critical information from the device. This could allow an unauthenticated attacker to access sensitive data, potentially leading to a breach of confidentiality. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot...

3.1CVSS5.9AI score0.00163EPSS
Exploits0References3
NVD
NVD
added 2025/10/21 2:15 p.m.4 views

CVE-2025-11151

Exposure of Sensitive Information to an Unauthorized Actor, Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Beyaz Bilgisayar Software Design Industry and Trade Ltd. Co. CityPLus allows Detect Unpublicized Web Pages. This issue affects CityPLus: before...

8.2CVSS0.00252EPSS
Exploits0References2
NVD
NVD
added 2025/10/10 10:15 a.m.13 views

CVE-2025-52634

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in HCL AION This issue affects HCL AION: 2.0...

7.5CVSS0.00223EPSS
Exploits0References1
OSV
OSV
added 2025/10/10 10:15 a.m.3 views

CVE-2025-52634

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in HCL AION This issue affects HCL AION: 2.0...

7.5CVSS5.8AI score0.00223EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/08 6:50 a.m.9 views

CVE-2025-48464 Exposure of Sensitive Information

Successful exploitation of the vulnerability could allow an unauthenticated attacker to gain access to a victim’s Sync account data such as account credentials and email protection information...

4.7CVSS0.0013EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-27558

Malicious code in bioql PyPI...

6.5CVSS6.7AI score0.00529EPSS
Exploits0References1
Rows per page
Query Builder