8633 matches found
Logging Redactor 安全漏洞
Logging Redactor is a Python library by Arman Jasuja Individual Developer for editing sensitive data in logs. A security vulnerability exists in Logging Redactor versions prior to 0.0.6, which stems from the conversion of a non-string type to a string type, which may result in a type error...
PT-2026-2142
Name of the Vulnerable Software and Affected Versions Logging Redactor versions prior to 0.0.6 Description Logging Redactor is a Python library used to redact sensitive data in logs using regex patterns or dictionary keys. Versions prior to 0.0.6 incorrectly convert non-string data types into...
CVE-2025-47346
Memory corruption while processing a secure logging command in the trusted application...
CVE-1999-0575
A Windows NT system's user audit policy does not log an event success or failure, e.g. for Logon and Logoff, File and Object Access, Use of User Rights, User and Group Management, Security Policy Changes, Restart, Shutdown, and System, and Process Tracking...
CVE-1999-0795
The NIS+ rpc.nisd server allows remote attackers to execute certain RPC calls without authentication to obtain system information, disable logging, or modify caches...
CVE-1999-0579
A Windows NT system's registry audit policy does not log an event success or failure for non-critical registry keys...
CVE-1999-0576
A Windows NT system's file audit policy does not log an event success or failure for security-critical files or directories...
CVE-2019-7613
Winlogbeat versions before 5.6.16 and 6.6.2 had an insufficient logging flaw. An attacker able to inject certain characters into a log entry could prevent Winlogbeat from recording the event...
CVE-2019-7612
A sensitive data disclosure flaw was found in the way Logstash versions before 5.6.15 and 6.6.1 logs malformed URLs. If a malformed URL is specified as part of the Logstash configuration, the credentials for the URL could be inadvertently logged as part of the error message...
CVE-2019-12391
The Anviz Management System for access control has insufficient logging for device events such as door open requests...
CVE-2006-3413
The privoxy configuration file in Tor before 0.1.1.20, when run on Apple OS X, logs all data via the "logfile", which allows attackers to obtain potentially sensitive information...
CVE-2024-2291
In Progress MOVEit Transfer versions released before 2022.0.11 14.0.11, 2022.1.12 14.1.12, 2023.0.9 15.0.9, 2023.1.4 15.1.4, a logging bypass vulnerability has been discovered. An authenticated user could manipulate a request to bypass the logging mechanism within the web application which result...
CVE-2025-1036
Command injection vulnerability exists in the “Logging” page of the web-based configuration utility. An authenticated user with low privileged network access for the configuration utility can execute arbitrary commands on the underlying OS to obtain root SSH access to the TropOS 4th Gen device...
CVE-2025-1308
A vulnerability exists in PX Backup whereby sensitive information may be logged under specific conditions...
SUSE CVE-2025-69230
AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. In versions 3.13.2 and below, reading multiple invalid cookies can lead to a logging storm. If the cookies attribute is accessed in an application, then an attacker may be able to trigger a storm of warning-level logs...
Qualcomm Chipsets 安全漏洞
Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that originates from a memory corruption that occurs when processing security logging commands in a trusted application...
CVE-2025-47346 Out-of-bounds Write in HLOS
Memory corruption while processing a secure logging command in the trusted application...
CVE-2025-47346
CVE-2025-47346 describes memory corruption when processing a secure logging command in the trusted application on Qualcomm chipsets. The CVSSv3.1 metrics indicate a local, low-complexity attack with no user interaction, resulting in high confidentiality, integrity, and availability impact (CVSS b...
CVE-2025-47346 Out-of-bounds Write in HLOS
Memory corruption while processing a secure logging command in the trusted application...
UBUNTU-CVE-2025-69230
AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. In versions 3.13.2 and below, reading multiple invalid cookies can lead to a logging storm. If the cookies attribute is accessed in an application, then an attacker may be able to trigger a storm of warning-level logs...