Lucene search
+L

17 matches found

Tenable Nessus
Tenable Nessus
added 2026/04/17 12:0 a.m.8 views

Apache Tomcat 10.1.22 < 10.1.54 multiple vulnerabilities

The version of Tomcat installed on the remote host is prior to 10.1.54. It is, therefore, affected by multiple vulnerabilities as referenced in the fixedinapachetomcat10.1.54security-10 advisory. - Insertion of Sensitive Information into Log File vulnerability in the cloud membership for clusteri...

7.5CVSS6AI score0.21691EPSS
Exploits6References9
CVE
CVE
added 2026/03/09 12:0 a.m.15 views

CVE-2025-70040

CVE-2025-70040 affects the npm package jimeng-web-mcp (v2.1.2) from LupinLin1. The issue is described as CWE-532: Insertion of Sensitive Information into Log File, allowing an attacker to obtain sensitive information via poorly sanitized log output. Connected sources confirm the affected componen...

5.3CVSS5.8AI score0.00241EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2025/11/19 8:53 a.m.3 views

CVE-2025-11446

Insertion of Sensitive Information into Log File vulnerability in upKeeper Solutions upKeeper Manager allows Use of Known Domain Credentials.This issue affects upKeeper Manager: from 5.2.0 before 5.2.12...

7.3CVSS6.5AI score0.00222EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/14 6:30 p.m.4 views

EUVD-2025-34294

Insertion of sensitive information into log file in Windows StateRepository API allows an authorized attacker to disclose information locally...

5.5CVSS8.8AI score0.0042EPSS
Exploits0References2
OSV
OSV
added 2025/07/30 6:15 p.m.6 views

CVE-2025-30105

Dell XtremIO, versions 6.4.0-22, contains an Insertion of Sensitive Information into Log File vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Information exposure. The attacker may be able to use the exposed credentials to access...

5.5CVSS5.8AI score0.00135EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2024-22123

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Setting SMS media allows to set GSM modem file. Later this file is used as Linux device. But due everything is a file for Linux, it is possible to set another...

2.7CVSS6.1AI score0.00575EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2024/11/08 7:3 p.m.24 views

Git credentials are exposed in Atlantis logs

Summary Short summary of the problem. Make the impact and severity as clear as possible. For example: An unsafe deserialization vulnerability allows any unauthenticated user to execute arbitrary code on the server. Atlantis logs contains GitHub credentials tokens ghs... when they are rotated. Thi...

9.8CVSS8AI score0.00698EPSS
Exploits1References9Affected Software1
SUSE CVE
SUSE CVE
added 2024/08/17 2:0 a.m.4 views

SUSE CVE-2024-22123

Setting SMS media allows to set GSM modem file. Later this file is used as Linux device. But due everything is a file for Linux, it is possible to set another file, e.g. log file and zabbixserver will try to communicate with it as modem. As a result, log file will be broken with AT commands and...

2.7CVSS7AI score0.00575EPSS
Exploits0References3
OSV
OSV
added 2024/08/12 1:38 p.m.31 views

CVE-2024-22123

Setting SMS media allows to set GSM modem file. Later this file is used as Linux device. But due everything is a file for Linux, it is possible to set another file, e.g. log file and zabbixserver will try to communicate with it as modem. As a result, log file will be broken with AT commands and...

2.7CVSS6.8AI score
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/08/09 12:0 a.m.7 views

PT-2024-6100 · Zabbix +4 · Zabbix +4

Name of the Vulnerable Software and Affected Versions: Zabbix affected versions not specified Description: The issue is related to incorrect code generation control in the Zabbix monitoring system. It allows a remote attacker to execute arbitrary code. Setting SMS media allows configuring a GSM...

9.9CVSS6.2AI score0.76618EPSS
Exploits8References98
CNNVD
CNNVD
added 2023/07/12 12:0 a.m.5 views

JetBrains TeamCity 日志信息泄露漏洞

JetBrains TeamCity is a set of distributed build management and continuous integration tools from the Czech company JetBrains. The tool provides continuous unit testing, code quality analysis and build problem analysis reports and other features. An information disclosure vulnerability exists in...

6.5CVSS6.2AI score0.00499EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/11/07 12:0 a.m.4 views

Acronis Cyber Protect 日志信息泄露漏洞

Acronis Cyber Protect is an all-in-one cyber protection solution for business and enterprise from Acronis Singapore. It combines backup, anti-malware, network security, and endpoint management features such as vulnerability assessment, URL filtering, patch management, and more. A security...

5.5CVSS5.1AI score0.00148EPSS
Exploits0References2
CVE
CVE
added 2022/07/21 11:26 a.m.74 views

CVE-2022-32556

CVE-2022-32556 affects Couchbase Server before 7.0.4. During certain crashes, a private key is leaked to log files, exposing sensitive material and potentially impacting confidentiality. CVSSv3.1 base score is 7.5 (HIGH). The provided materials identify affected product/version and the root cause...

7.5CVSS7.4AI score0.00889EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2020/07/07 7:15 p.m.2 views

DEBIAN-CVE-2020-15095

Versions of the npm CLI prior to 6.14.6 are vulnerable to an information exposure vulnerability through log files. The CLI supports URLs like "://:@::/". The password value is not redacted and is printed to stdout and also to any generated log files...

4.4CVSS6.8AI score0.00417EPSS
Exploits0References1
CNVD
CNVD
added 2019/12/23 12:0 a.m.4 views

F5 BIG-IP APM Log Leakage Vulnerability

F5 BIG-IP APM is a suite of access and security solutions from F5 USA. The product provides unified access to business-critical applications and networks. A security vulnerability exists in F5 BIG-IP APM versions 15.0.0 through 15.0.1, 14.1.0 through 14.1.2, and 14.0.0 through 14.0.1, which stems...

4.9CVSS6.6AI score0.00828EPSS
Exploits0References1
OSV
OSV
added 2017/01/05 5:45 p.m.9 views

USN-3164-1 exim4 vulnerability

Bjoern Jacke discovered that Exim incorrectly handled DKIM keys. In certain configurations, private DKIM signing keys could be leaked to the log files...

5.9CVSS6.6AI score0.03098EPSS
Exploits0References2
OSV
OSV
added 2016/10/03 6:59 p.m.9 views

CVE-2016-5432

The ovirt-engine-provisiondb utility in Red Hat Enterprise Virtualization RHEV Engine 4.0 allows local users to obtain sensitive database provisioning information by reading log files...

3.3CVSS5.4AI score0.00346EPSS
Exploits0References4
Rows per page
Query Builder