Lucene search
K

329 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 5:30 a.m.7 views

CVE-2023-41263

An issue was discovered in Plixer Scrutinizer before 19.3.1. It exposes debug logs to unauthenticated users at the /debug/ URL path. With knowledge of valid IP addresses and source types, an unauthenticated attacker can download debug logs containing application-related information...

3.7CVSS6.9AI score0.00413EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:29 a.m.7 views

CVE-2023-5028

A vulnerability, which was classified as problematic, has been found in China Unicom TEWA-800G 4.16L.04CT2015Yueme. Affected by this issue is some unknown functionality. The manipulation leads to information exposure through debug log file. It is possible to launch the attack on the physical...

4.6CVSS6.2AI score0.00354EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/23 3:46 a.m.9 views

CVE-2023-31413

Filebeat versions through 7.17.9 and 8.6.2 have a flaw in httpjson input that allows the http request Authorization or Proxy-Authorization header contents to be leaked in the logs when debug logging is enabled...

5.5CVSS6.7AI score0.00182EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 12:51 a.m.10 views

CVE-2022-33187

Brocade SANnav before v2.2.1 logs usernames and encoded passwords in debug-enabled logs. The vulnerability could allow an attacker with admin privilege to read sensitive information...

5.5CVSS6.6AI score0.00461EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:7 p.m.6 views

CVE-2021-37842

metakv in Couchbase Server 7.0.0 uses Cleartext for Storage of Sensitive Information. Remote Cluster XDCR credentials can get leaked in debug logs. Config key tombstone purging was added in Couchbase Server 7.0.0. This issue happens when a config key, which is being logged, has a tombstone purger...

7.5CVSS7AI score0.00588EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:26 p.m.8 views

CVE-2021-25764

In JetBrains PhpStorm before 2020.3, source code could be added to debug logs...

5.3CVSS7AI score0.00768EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/29 4:35 a.m.18 views

CVE-2025-46329 Snowflake Connector for C/C++ inserts client-side encryption key in DEBUG logs

libsnowflakeclient is the Snowflake Connector for C/C++. Versions starting from 0.5.0 to before 2.2.0, are vulnerable to local logging of sensitive information. When the logging level was set to DEBUG, the Connector would log locally the client-side encryption master key of the target stage durin...

3.3CVSS0.00097EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/04/29 4:35 a.m.4 views

CVE-2025-46329 Snowflake Connector for C/C++ inserts client-side encryption key in DEBUG logs

libsnowflakeclient is the Snowflake Connector for C/C++. Versions starting from 0.5.0 to before 2.2.0, are vulnerable to local logging of sensitive information. When the logging level was set to DEBUG, the Connector would log locally the client-side encryption master key of the target stage durin...

3.3CVSS3.9AI score0.00097EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/04/09 11:28 p.m.22 views

CVE-2025-27391

A flaw was found in Apache ActiveMQ Artemis. This vulnerability allows an attacker with access to debug logs to obtain sensitive configuration information via debug-level logging of broker properties. Mitigation Mitigation for this issue is either not available or the currently available options ...

5.5CVSS6.2AI score0.00358EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/04/05 10:39 p.m.13 views

CVE-2025-0278

HCL Traveler is affected by an internal path disclosure in a Windows application when the application inadvertently reveals internal file paths, in error messages, debug logs, or responses to user requests...

4.3CVSS7AI score0.00256EPSS
Exploits0References3
OSV
OSV
added 2025/04/03 10:15 p.m.3 views

CVE-2025-0278

HCL Traveler is affected by an internal path disclosure in a Windows application when the application inadvertently reveals internal file paths, in error messages, debug logs, or responses to user requests...

4.3CVSS5.8AI score0.00256EPSS
Exploits0References1
NVD
NVD
added 2025/04/03 10:15 p.m.6 views

CVE-2025-0278

HCL Traveler is affected by an internal path disclosure in a Windows application when the application inadvertently reveals internal file paths, in error messages, debug logs, or responses to user requests...

4.3CVSS0.00256EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/03 10:7 p.m.13 views

CVE-2025-0278 An internal path disclosure vulnerability affects HCL Traveler

HCL Traveler is affected by an internal path disclosure in a Windows application when the application inadvertently reveals internal file paths, in error messages, debug logs, or responses to user requests...

4.3CVSS0.00256EPSS
Exploits0References1
CVE
CVE
added 2025/04/03 10:7 p.m.41 views

CVE-2025-0278

CVE-2025-0278 affects HCL Traveler, a Windows application. The issue is an internal path disclosure where internal file paths may be revealed in error messages, debug logs, or responses to user requests. The CVE entry cites a MEDIUM severity (CVSS v3.1: 4.3, AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N) w...

4.3CVSS6.9AI score0.00256EPSS
Exploits0References1Affected Software1
Citrix
Citrix
added 2025/03/17 12:0 a.m.18 views

WEM Agents are not listed in Console and failed to register

WEM Agents are not listed in Console and failed to register, Citrix WEM Agent Host Service Debug.log and Event Logs shows the below exception. ConfigurationDataSourcesHelper.CheckAgentBrokerServiceClient : System.ServiceModel.Security.SecurityNegotiationException : The caller was not authenticate...

7.2AI score
Exploits0
Vulnrichment
Vulnrichment
added 2025/03/13 7:1 p.m.10 views

CVE-2025-27496 Snowflake JDBC Driver client-side encryption key in DEBUG logs

Snowflake, a platform for using artificial intelligence in the context of cloud computing, has a vulnerability in the Snowflake JDBC driver "Driver" in versions 3.0.13 through 3.23.0 of the driver. When the logging level was set to DEBUG, the Driver would log locally the client-side encryption...

3.3CVSS3.9AI score0.00111EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/03/13 7:1 p.m.20 views

CVE-2025-27496 Snowflake JDBC Driver client-side encryption key in DEBUG logs

Snowflake, a platform for using artificial intelligence in the context of cloud computing, has a vulnerability in the Snowflake JDBC driver "Driver" in versions 3.0.13 through 3.23.0 of the driver. When the logging level was set to DEBUG, the Driver would log locally the client-side encryption...

3.3CVSS0.00111EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2025/03/13 6:57 p.m.18 views

Snowflake JDBC Driver client-side encryption key in DEBUG logs

Issue Snowflake discovered and remediated a vulnerability in the Snowflake JDBC driver “Driver”. When the logging level was set to DEBUG, the Driver would log locally the client-side encryption master key of the target stage during the execution of GET/PUT commands. This key by itself does not...

3.3CVSS6.9AI score0.00111EPSS
Exploits0References4Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2017-15113

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ovirt-engine before version 4.1.7.6 with log level set to DEBUG includes passwords in the log file without masking. Only administrators can change the log level...

7.2CVSS6.9AI score0.01164EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/02/14 3:47 a.m.14 views

CVE-2025-1053 Brocade SANnav encryption key is logged in the debug logs

Under certain error conditions at time of SANnav installation or upgrade, the encryption key can be written into and obtained from a Brocade SANnav supportsave. An attacker with privileged access to the Brocade SANnav database could use the encryption key to obtain passwords used by Brocade SANna...

8.6CVSS0.00145EPSS
Exploits0References1
Rows per page
Query Builder