CVE-2025-57813 Insertion of Sensitive Information into Log File in github.com/traPtitech/traQ

traQ is a messenger application built for Digital Creators Club traP. Prior to version 3.25.0, a vulnerability exists where sensitive information, such as OAuth tokens, are recorded in log files when an error occurs during the execution of an SQL query. An attacker could intentionally trigger an...

CVE-2025-57813 Insertion of Sensitive Information into Log File in github.com/traPtitech/traQ

traQ is a messenger application built for Digital Creators Club traP. Prior to version 3.25.0, a vulnerability exists where sensitive information, such as OAuth tokens, are recorded in log files when an error occurs during the execution of an SQL query. An attacker could intentionally trigger an...

Linux Distros Unpatched Vulnerability : CVE-2023-31493

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - RCE Remote Code Execution exists in ZoneMinder through 1.36.33 as an attacker can create a new .php log file in language folder, while executing a crafted paylo...

Linux Distros Unpatched Vulnerability : CVE-2004-0423

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The logevent function in ssmtp 2.50.6 and earlier allows local users to overwrite arbitrary files via a symlink attack on the ssmtp.log temporary log file...

CLSA-2025-1755791979 krb5: Fix of CVE-2025-24528

CVE-2025-24528: fix buffer overflow vulnerability in iprop log file writing...

Linux Distros Unpatched Vulnerability : CVE-2009-4488

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Varnish 2.0.6 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to modify a window's title, or possibly...

Linux Distros Unpatched Vulnerability : CVE-2023-44483

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - All versions of Apache Santuario - XML Security for Java prior to 2.2.6, 2.3.4, and 3.0.3, when using the JSR 105 API, are vulnerable to an issue where a privat...

Cisco Duo Authentication Proxy 信息泄露漏洞

Cisco Duo Authentication Proxy is a local security service from Cisco. An information disclosure vulnerability exists in Cisco Duo Authentication Proxy, which stems from insufficient masking of sensitive information in the system log file, which could lead to an elevated privilege user viewing...

VulnCheck KEV: CVE-2022-35803

Windows Common Log File System Driver Elevation of Privilege Vulnerability...

VulnCheck KEV: CVE-2022-24481

Windows Common Log File System Driver Elevation of Privilege Vulnerability...

Linux Distros Unpatched Vulnerability : CVE-2019-3888

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in Undertow web server before 2.0.21. An information exposure of plain text credentials through log files because...

Important: Red Hat Security Advisory: OpenShift Container Platform 4.19.9 security and extras update

Red Hat OpenShift Container Platform release 4.19.9 is now available with updates to packages and images that fix several bugs. This release includes a security update for Red Hat OpenShift Container Platform 4.19. Red Hat Product Security has rated this update as having a security impact of...

Linux Distros Unpatched Vulnerability : CVE-2022-0338

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insertion of Sensitive Information into Log File in Conda loguru prior to 0.5.3. CVE-2022-0338 Note that Nessus relies on the presence of the package as reporte...

CVE-2025-38745

Dell OpenManage Enterprise, versions 3.10, 4.0, 4.1, and 4.2, contains an Insertion of Sensitive Information into Log File vulnerability in the Backup and Restore. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Information exposure...

CVE-2025-34154

UnForm Server Manager versions prior to 10.1.12 expose an unauthenticated file read vulnerability via its log file analysis interface. The flaw resides in the arc endpoint, which accepts a fl parameter to specify the log file to be opened. Due to insufficient input validation and lack of path...

CVE-2025-3831

Log files uploaded during troubleshooting by the Harmony SASE agent may have been accessible to unauthorized parties...

CVE-2025-38745

Dell OpenManage Enterprise, versions 3.10, 4.0, 4.1, and 4.2, contains an Insertion of Sensitive Information into Log File vulnerability in the Backup and Restore. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Information exposure...

CVE-2025-38745

Dell OpenManage Enterprise, versions 3.10, 4.0, 4.1, and 4.2, contains an Insertion of Sensitive Information into Log File vulnerability in the Backup and Restore. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Information exposure...

CVE-2025-38745

Dell OpenManage Enterprise, versions 3.10, 4.0, 4.1, and 4.2, contains an Insertion of Sensitive Information into Log File vulnerability in the Backup and Restore. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Information exposure...

CVE-2025-38745

Dell OpenManage Enterprise (versions 3.10, 4.0, 4.1, 4.2) contains an Insertion of Sensitive Information into Log File vulnerability in the Backup and Restore functionality. A low-privileged attacker with remote access could potentially exploit this to cause Information exposure. Connected source...