Lucene search
+L

8 matches found

astralinux
astralinux
added 2026/06/24 3:11 p.m.10 views

Astra Linux – Vulnerability in freeipa

A flaw was identified in the FreeIPA API audit; it sends the entire FreeIPA command line to journalctl. As a result, during the FreeIPA installation process, administrative user credentials—including the administrator’s password—are inadvertently leaked into the journal database. In the worst-cas...

5.5CVSS5.6AI score0.00226EPSS
Exploits0References3
osv
osv
added 2025/08/19 5:43 a.m.5 views

BIT-JENKINS-2024-9453 Jenkins-image: sensitive data disclosure when using openshift jenkins image

A vulnerability was found in Red Hat OpenShift Jenkins. The bearer token is not obfuscated in the logs and potentially carries a high risk if those logs are centralized when collected. The token is typically valid for one year. This flaw allows a malicious user to jeopardize the environment if th...

6.5CVSS6.8AI score0.00344EPSS
Exploits0References3
nvd
nvd
added 2025/07/04 9:15 a.m.7 views

CVE-2024-9453

A vulnerability was found in Red Hat OpenShift Jenkins. The bearer token is not obfuscated in the logs and potentially carries a high risk if those logs are centralized when collected. The token is typically valid for one year. This flaw allows a malicious user to jeopardize the environment if th...

6.5CVSS0.00344EPSS
Exploits0References2
osv
osv
added 2025/07/04 8:36 a.m.5 views

CVE-2024-9453 Jenkins-image: sensitive data disclosure when using openshift jenkins image

A vulnerability was found in Red Hat OpenShift Jenkins. The bearer token is not obfuscated in the logs and potentially carries a high risk if those logs are centralized when collected. The token is typically valid for one year. This flaw allows a malicious user to jeopardize the environment if th...

6.5CVSS5.9AI score0.00344EPSS
Exploits0References6
susecve
susecve
added 2025/01/22 4:3 a.m.3 views

SUSE CVE-2024-11029

A flaw was found in the FreeIPA API audit, where it sends the whole FreeIPA command line to journalctl. As a consequence, during the FreeIPA installation process, it inadvertently leaks the administrative user credentials, including the administrator password, to the journal database. In the...

5.5CVSS6.7AI score0.00226EPSS
Exploits0References3
osv
osv
added 2025/01/15 1:15 p.m.2 views

DEBIAN-CVE-2024-11029

A flaw was found in the FreeIPA API audit, where it sends the whole FreeIPA command line to journalctl. As a consequence, during the FreeIPA installation process, it inadvertently leaks the administrative user credentials, including the administrator password, to the journal database. In the...

5.5CVSS5.6AI score0.00226EPSS
Exploits0References1
cnnvd
cnnvd
added 2023/01/17 12:0 a.m.6 views

Shopware 日志信息泄露漏洞

Shopware is a suite of open source e-commerce software from the German company Shopware. Shopware suffers from a log information disclosure vulnerability that stems from the logging module writing out all types of sent emails. An attacker with access to local system logs or a centralized log stor...

6.5CVSS6.4AI score0.00705EPSS
Exploits0References5
nessus
nessus
added 2008/10/03 12:0 a.m.47 views

Blue Coat Reporter Detection

The remote host is running Blue Coat Reporter, a web reporting system for monitoring centralized logs from Blue Coat appliances. And this service is used to access the application. C Tenable Network Security, Inc. include"compat.inc"; ifdescription scriptid34334; scriptversion"1.10";...

5.5AI score
Exploits0References1
Rows per page
Query Builder