Lucene search
K

9 matches found

OSV
OSV
added 2026/04/16 11:37 p.m.6 views

BIT-AIRFLOW-2025-66236 Apache Airflow: Secrets from Airflow config file logged in plain text in DAG run logs UI

Before Airflow 3.2.0, it was unclear that secure Airflow deployments require the Deployment Manager to take appropriate actions and pay attention to security details and security model of Airflow. Some assumptions the Deployment Manager could make were not clear or explicit enough, even though...

7.5CVSS5.7AI score0.00439EPSS
Exploits0References4
OSV
OSV
added 2026/04/13 3:31 p.m.4 views

GHSA-J86X-FWP2-QH7V Apache Airflow: Secrets from Airflow config file logged in plain text in DAG run logs UI

Before Airflow 3.2.0, it was unclear that secure Airflow deployments require the Deployment Manager to take appropriate actions and pay attention to security details and security model of Airflow. Some assumptions the Deployment Manager could make were not clear or explicit enough, even though...

5.3CVSS5.8AI score0.00439EPSS
Exploits0References7
Veracode
Veracode
added 2026/01/16 8:56 a.m.7 views

Exposure Of Sensitive Information

github.com/rancher/rancher is vulnerable to Exposure of Sensitive Information. The vulnerability is due to sensitive data being written to Rancher audit logs, which allows an attacker with access to these logs to obtain secret data, cluster import URLs, and registration tokens...

4.3CVSS5.9AI score0.00271EPSS
Exploits0References5Affected Software1
ATTACKERKB
ATTACKERKB
added 2025/09/19 6:46 p.m.8 views

CVE-2025-34188

Vasion Print formerly PrinterLogic Virtual Appliance Host versions prior to 1.0.735 and Application prior to 20.0.1330 macOS/Linux client deployments contain a vulnerability in the local logging mechanism. Authentication session tokens, including PHPSESSID, XSRF-TOKEN, and laravelsession, are...

8.4CVSS5.7AI score0.00287EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2024/11/19 9:20 p.m.3 views

io.quarkiverse.cxf:quarkus-cxf: Quarkus CXF may log user password and secret to application log

A vulnerability was found in Quarkus CXF. Passwords and other secrets may appear in the application log in spite of the user configuring them to be hidden. This issue requires some special configuration to be vulnerable, such as SOAP logging enabled, application set client, and endpoint logging...

5.3CVSS5.7AI score0.00511EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/10/14 12:0 a.m.4 views

Checkmk 安全漏洞

Checkmk is an IT monitoring platform from Checkmk, Inc. A security vulnerability exists in Checkmk that stems from the insertion of sensitive information into log files, which could result in SNMP and IMPI secrets for host and folder attributes being written to administrator-accessible audit log...

5.1CVSS6.2AI score0.00322EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/10/08 12:0 a.m.7 views

Quarkus CXF 日志信息泄露漏洞

Quarkus CXF is an extension to Quarkiverse open source. Quarkus CXF suffers from a log information disclosure vulnerability that stems from the fact that passwords and other secrets may appear in application logs despite users configuring them to be hidden...

5.3CVSS5.1AI score0.00511EPSS
Exploits0References4
OSV
OSV
added 2022/03/10 5:47 p.m.4 views

CVE-2022-26311

Couchbase Operator 2.2.x before 2.2.3 exposes Sensitive Information to an Unauthorized Actor. Secrets are not redacted in logs collected from Kubernetes environments...

7.5CVSS5.8AI score0.01137EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/06/09 12:0 a.m.6 views

Palo Alto Networks Prisma Cloud 日志信息泄露漏洞

Palo Alto Networks Prisma Cloud is a comprehensive cloud-native security platform from US-based Palo Alto Networks, Inc. provides cloud security services. Palo Alto Networks Prisma Cloud Compute suffers from a log information disclosure vulnerability that originates when a secret used to authoriz...

5.5CVSS5.3AI score0.00537EPSS
Exploits0References3
Rows per page
Query Builder