Lucene search
+L

9 matches found

osv
osv
added 2026/07/08 12:0 a.m.4 views

ALSA-2026:36788 Important: tomcat security, bug fix, and enhancement update

Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages JSP technologies. Security Fixes: Apache Tomcat: Apache Tomcat: Information disclosure via Padding Oracle vulnerability in EncryptInterceptor CVE-2026-29146 Apache Tomcat: Apache Tomcat: Missing Encryption of Sensitive...

7.5CVSS7AI score0.21691EPSS
Exploits6References6
redhatcve
redhatcve
added 2025/12/30 1:2 a.m.10 views

CVE-2025-15065

Exposure of Sensitive Information to an Unauthorized Actor, Missing Encryption of Sensitive Data, Files or Directories Accessible to External Parties vulnerability in Kings Information & Network Co. KESS Enterprise on Windows allows Privilege Escalation, Modify Existing Service, Modify Shared...

8.6CVSS6.8AI score0.00046EPSS
Exploits0References1
nessus
nessus
added 2025/11/13 12:0 a.m.2 views

Siemens SIMATIC S7-1500 Missing Encryption of Sensitive Data (CVE-2022-27775)

An information disclosure vulnerability exists in curl 7.65.0 to 7.82.0 are vulnerable that by using an IPv6 address that was in the connection pool but with a different zone id it could reuse a connection instead. This plugin only works with Tenable.ot. Please visit...

7.5CVSS6.7AI score0.02794EPSS
Exploits1References4
nessus
nessus
added 2025/11/13 12:0 a.m.5 views

Siemens SIMATIC S7-1500 Missing Encryption of Sensitive Data (CVE-2021-36690)

A segmentation fault can occur in the sqlite3.exe command-line component of SQLite 3.36.0 via the idxGetTableInfo function when there is a crafted SQL query. NOTE: the vendor disputes the relevance of this report because a sqlite3.exe user already has full privileges e.g., is intentionally allowe...

7.5CVSS6.8AI score0.03898EPSS
Exploits1References4
osv
osv
added 2023/08/16 8:15 p.m.3 views

CVE-2023-4384

A vulnerability has been found in MaximaTech Portal Executivo 21.9.1.140 and classified as problematic. This vulnerability affects unknown code of the component Cookie Handler. The manipulation leads to missing encryption of sensitive data. The attack can be initiated remotely. The complexity of ...

5.9CVSS4.4AI score0.00357EPSS
Exploits1References3
attackerkb
attackerkb
added 2022/01/04 4:15 p.m.3 views

CVE-2021-40148

In Modem EMM, there is a possible information disclosure due to a missing data encryption. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00716585; Issue ID: ALPS05886933...

7.5CVSS7.3AI score0.0074EPSS
Exploits0References2
nvd
nvd
added 2022/01/04 4:15 p.m.12 views

CVE-2021-40148

In Modem EMM, there is a possible information disclosure due to a missing data encryption. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00716585; Issue ID: ALPS05886933...

7.5CVSS0.0074EPSS
Exploits0References1
attackerkb
attackerkb
added 2021/12/08 3:15 p.m.2 views

CVE-2021-37050

There is a Missing sensitive data encryption vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may affect service confidentiality...

7.5CVSS7.1AI score0.00328EPSS
Exploits0References3Affected Software3
osv
osv
added 2021/12/08 3:15 p.m.3 views

CVE-2021-37050

There is a Missing sensitive data encryption vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may affect service confidentiality...

7.5CVSS5.8AI score
Exploits0References2
Rows per page
Query Builder