CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4561 matches found

UbuntuCve•added 2022/01/25 9:15 a.m.•21 views

CVE-2022-0338

Insertion of Sensitive Information into Log File in Conda loguru prior to 0.5.3...

4.3CVSS5.8AI score0.00758EPSS

Exploits1References2

Prion•added 2022/01/25 9:15 a.m.•19 views

Information disclosure

Insertion of Sensitive Information into Log File in Conda loguru prior to 0.5.3...

4CVSS4.5AI score0.00758EPSS

Exploits1References2Affected Software1

Cvelist•added 2022/01/25 9:0 a.m.•35 views

CVE-2022-0338 Insertion of Sensitive Information into Log File in delgan/loguru

Insertion of Sensitive Information into Log File in Conda loguru prior to 0.5.3...

4.3CVSS4.8AI score0.00758EPSS

Exploits1References2

Debian CVE•added 2022/01/25 9:0 a.m.•26 views

CVE-2022-0338

Insertion of Sensitive Information into Log File in Conda loguru prior to 0.5.3...

4.3CVSS4.5AI score0.00758EPSS

Exploits1

OSV•added 2022/01/25 9:0 a.m.•24 views

CVE-2022-0338 Insertion of Sensitive Information into Log File in delgan/loguru

Insertion of Sensitive Information into Log File in Conda loguru prior to 0.5.3...

4.3CVSS4.8AI score0.00758EPSS

Exploits1References4

OSV•added 2022/01/19 11:15 p.m.•4 views

AZL-45261 CVE-2022-21704 affecting package js-jquery 3.5.0-4

log4js-node is a port of log4js to node.js. In affected versions default file permissions for log files created by the file, fileSync and dateFile appenders are world-readable in unix. This could cause problems if log files contain sensitive information. This would affect any users that have not...

5.5CVSS6.5AI score0.00302EPSS

Exploits0References1

NVD•added 2022/01/17 9:15 p.m.•14 views

CVE-2022-22703

In Stormshield SSO Agent 2.x before 2.1.1 and 3.x before 3.0.2, the cleartext user password and PSK are contained in the log file of the .exe installer...

5.5CVSS0.00236EPSS

Exploits0References1

CVE•added 2022/01/17 8:4 p.m.•92 views

CVE-2022-22703

Stormshield SSO Agent 2.x (before 2.1.1) and 3.x (before 3.0.2) expose cleartext credentials because their installer .exe log files contain the user password and PSK. Root cause: sensitive data is written to log files during installation; impact is exposure of credentials via local logs. The prov...

5.5CVSS5.6AI score0.00236EPSS

Exploits0References1Affected Software1

Prion•added 2022/01/14 5:15 p.m.•15 views

Code injection

IBM Sterling Gentran:Server for Microsoft Windows 5.3 stores potentially sensitive information in log files that could be read by a local user. IBM X-Force ID: 213962...

2.1CVSS4.9AI score0.00252EPSS

Exploits0References2Affected Software1

CVE•added 2022/01/14 5:10 p.m.•42 views

CVE-2021-39032

CVE-2021-39032 affects IBM Sterling Gentran:Server for Windows. The IBM security bulletin and NVD entry state that 5.3.1 stores potentially sensitive information in log files that could be read by a local user, with an attack vector local and impact on confidentiality (high). Affected version: IB...

5.5CVSS5AI score0.00252EPSS

Exploits0References2Affected Software1

BDU FSTEC•added 2022/01/12 12:0 a.m.•2 views

The vulnerability of the Windows Common Log File System Driver in the Windows operating system allows a hacker to gain increased privileges.

The vulnerability of the Windows Common Log File System Driver in the operating system is related to access control deficiencies. Exploiting this vulnerability can allow an attacker to enhance their privileges...

7.8CVSS7.2AI score0.00632EPSS

Exploits0References2

OSV•added 2022/01/11 9:15 p.m.•1 views

CVE-2022-21916