Lucene search
K

8633 matches found

CNNVD
CNNVD
added 2026/01/08 12:0 a.m.3 views

Logging Redactor 安全漏洞

Logging Redactor is a Python library by Arman Jasuja Individual Developer for editing sensitive data in logs. A security vulnerability exists in Logging Redactor versions prior to 0.0.6, which stems from the conversion of a non-string type to a string type, which may result in a type error...

5.3CVSS6.4AI score0.00228EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/01/08 12:0 a.m.5 views

PT-2026-2142

Name of the Vulnerable Software and Affected Versions Logging Redactor versions prior to 0.0.6 Description Logging Redactor is a Python library used to redact sensitive data in logs using regex patterns or dictionary keys. Versions prior to 0.0.6 incorrectly convert non-string data types into...

5.3CVSS6.5AI score0.00228EPSS
Exploits1References6
NVD
NVD
added 2026/01/07 12:17 p.m.6 views

CVE-2025-47346

Memory corruption while processing a secure logging command in the trusted application...

7.8CVSS0.00072EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:42 a.m.9 views

CVE-1999-0575

A Windows NT system's user audit policy does not log an event success or failure, e.g. for Logon and Logoff, File and Object Access, Use of User Rights, User and Group Management, Security Policy Changes, Restart, Shutdown, and System, and Process Tracking...

7.5CVSS7.1AI score0.05387EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:41 a.m.7 views

CVE-1999-0795

The NIS+ rpc.nisd server allows remote attackers to execute certain RPC calls without authentication to obtain system information, disable logging, or modify caches...

7.5CVSS7.6AI score0.02118EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:41 a.m.8 views

CVE-1999-0579

A Windows NT system's registry audit policy does not log an event success or failure for non-critical registry keys...

10CVSS7AI score0.06131EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:40 a.m.7 views

CVE-1999-0576

A Windows NT system's file audit policy does not log an event success or failure for security-critical files or directories...

7.5CVSS7AI score0.04823EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:37 a.m.6 views

CVE-2019-7613

Winlogbeat versions before 5.6.16 and 6.6.2 had an insufficient logging flaw. An attacker able to inject certain characters into a log entry could prevent Winlogbeat from recording the event...

7.5CVSS6.8AI score0.01324EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:33 a.m.8 views

CVE-2019-7612

A sensitive data disclosure flaw was found in the way Logstash versions before 5.6.15 and 6.6.1 logs malformed URLs. If a malformed URL is specified as part of the Logstash configuration, the credentials for the URL could be inadvertently logged as part of the error message...

9.8CVSS6.5AI score0.02407EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:26 a.m.6 views

CVE-2019-12391

The Anviz Management System for access control has insufficient logging for device events such as door open requests...

7.5CVSS7AI score0.01127EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:26 a.m.9 views

CVE-2006-3413

The privoxy configuration file in Tor before 0.1.1.20, when run on Apple OS X, logs all data via the "logfile", which allows attackers to obtain potentially sensitive information...

5CVSS6.1AI score0.01611EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:13 a.m.5 views

CVE-2024-2291

In Progress MOVEit Transfer versions released before 2022.0.11 14.0.11, 2022.1.12 14.1.12, 2023.0.9 15.0.9, 2023.1.4 15.1.4, a logging bypass vulnerability has been discovered. An authenticated user could manipulate a request to bypass the logging mechanism within the web application which result...

4.3CVSS6.7AI score0.00385EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:12 a.m.14 views

CVE-2025-1036

Command injection vulnerability exists in the “Logging” page of the web-based configuration utility. An authenticated user with low privileged network access for the configuration utility can execute arbitrary commands on the underlying OS to obtain root SSH access to the TropOS 4th Gen device...

8.7CVSS7.8AI score0.0109EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:12 a.m.4 views

CVE-2025-1308

A vulnerability exists in PX Backup whereby sensitive information may be logged under specific conditions...

8.4CVSS6.5AI score0.00136EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/01/07 12:23 a.m.2 views

SUSE CVE-2025-69230

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. In versions 3.13.2 and below, reading multiple invalid cookies can lead to a logging storm. If the cookies attribute is accessed in an application, then an attacker may be able to trigger a storm of warning-level logs...

6.5CVSS6.4AI score0.00332EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/01/07 12:0 a.m.4 views

Qualcomm Chipsets 安全漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that originates from a memory corruption that occurs when processing security logging commands in a trusted application...

7.8CVSS7AI score0.00072EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/01/06 10:48 p.m.5 views

CVE-2025-47346 Out-of-bounds Write in HLOS

Memory corruption while processing a secure logging command in the trusted application...

7.8CVSS6.8AI score0.00072EPSS
Exploits0References1
CVE
CVE
added 2026/01/06 10:48 p.m.18 views

CVE-2025-47346

CVE-2025-47346 describes memory corruption when processing a secure logging command in the trusted application on Qualcomm chipsets. The CVSSv3.1 metrics indicate a local, low-complexity attack with no user interaction, resulting in high confidentiality, integrity, and availability impact (CVSS b...

7.8CVSS6.8AI score0.00072EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/01/06 10:48 p.m.25 views

CVE-2025-47346 Out-of-bounds Write in HLOS

Memory corruption while processing a secure logging command in the trusted application...

7.8CVSS0.00072EPSS
Exploits0References1
OSV
OSV
added 2026/01/06 12:15 a.m.4 views

UBUNTU-CVE-2025-69230

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. In versions 3.13.2 and below, reading multiple invalid cookies can lead to a logging storm. If the cookies attribute is accessed in an application, then an attacker may be able to trigger a storm of warning-level logs...

6.9CVSS6.3AI score0.00332EPSS
Exploits0References4
Rows per page
Query Builder