12 matches found
CVE-2026-13750
Snowflake CLI contains a local-logging vulnerability prior to version 3.19 where sensitive credentials (passwords, tokens, or private key material) could be written to persistent debug logs. An attacker with read access to the affected user’s local log files could exfiltrate credentials if they a...
Neo4j < 5.26.21 Information Disclosure Vulnerability (CVE-2026-1622)
According to its self-reported version number, the version of Neo4j running on the remote host is a version prior to 5.26.21. It is, therefore, affected by a information disclosure vulnerability where The obfuscateliterals option in the query logs does not redact error information, exposing...
EUVD-2021-13692
Malware in sbrugna...
EUVD-2020-27062
Malware in sbrugna...
PCL(Point Cloud Library) 日志信息泄露漏洞
PCL Point Cloud Library is a library of PCL open source. A log information disclosure vulnerability exists in PCL Point Cloud Library versions 2.12.0-beta.5 through 2.12.0-beta.9, which stems from login credentials being logged in a local log file, which could lead to credential disclosure...
CVE-2020-5908
In versions bundled with BIG-IP APM 12.1.0-12.1.5 and 11.6.1-11.6.5.2, Edge Client for Linux exposes full session ID in the local log files...
UBUNTU-CVE-2024-45598
Cacti is an open source performance and fault management framework. Prior to 1.2.29, an administrator can change the Poller Standard Error Log Path parameter in either Installation Step 5 or in Configuration-Settings-Paths tab to a local file inside the server. Then simply going to Logs tab and...
Information disclosure
Automox Agent prior to version 31 logs potentially sensitive information in local log files, which could be used by a locally-authenticated attacker to subvert an organization's security program. The issue has since been fixed in version 31 of the Automox Agent...
CVE-2021-26908
CVE-2021-26908 and CVE-2021-26909 apply to the Automox Agent prior to version 31. The issues are: (1) information disclosure via logging potentially sensitive data in local log files, and (2) storing sensitive files via an insufficiently protected S3 bucket endpoint that could be brute-forced. Ro...
Design/Logic Flaw
On BIG-IP 13.1.0-13.1.1.4, sensitive information is logged into the local log files and/or remote logging targets when restjavad processes an invalid request. Users with access to the log files would be able to view that data...
DEBIAN-CVE-2017-7938
Stack-based buffer overflow in DMitry Deepmagic Information Gathering Tool version 1.3a Unix allows attackers to cause a denial of service application crash or possibly have unspecified other impact via a long argument. An example threat model is automated execution of DMitry with hostname string...
Dmitry 1.3a - Local Buffer Overflow (PoC)
Dmitry 1.3a - Local Buffer Overflow PoC Exploit Title: DmitryDeepmagic Information Gathering Tool Local Stack Buffer Overflow CVE: CVE-2017-7938 CWE: CWE-119 Exploit Author: Hosein Askari FarazPajohan Vendor HomePage: http://mor-pah.net/software/dmitry-deepmagic-information-gathering-tool/ Versio...