JLSEC-2026-407

A use after free vulnerability exists in curl v8.1.0 in the way libcurl offers a feature to verify an SSH server's public key using a SHA 256 hash. When this check fails, libcurl would free the memory for the fingerprint before it returns an error message containing the now freed hash. This flaw...

EUVD-2026-25203

A Generation of Error Message Containing Sensitive Information vulnerability in the Materialized View Refresh mechanism in Google BigQuery on Google Cloud Platform allows an authenticated user to potentially disclose sensitive data using a crafted materialized view that triggers a runtime error...

CVE-2022-26070

When handling a mismatched pre-authentication cookie, the application leaks the internal error message in the response, which contains the Splunk Enterprise local system path. The vulnerability impacts Splunk Enterprise versions before 8.1.0...

CVE-2025-62840 HBS 3 Hybrid Backup Sync

A generation of error message containing sensitive information vulnerability has been reported to affect HBS 3 Hybrid Backup Sync. If an attacker gains local network access, they can then exploit the vulnerability to read application data. We have already fixed the vulnerability in the following...

EUVD-2006-6764

Malware in sbrugna...

EUVD-2005-4363

Malware in sbrugna...

EUVD-2002-0802

Malware in sbrugna...

EUVD-2002-0279

Malware in sbrugna...

EUVD-2019-4481

Malware in sbrugna...

EUVD-2003-1259

Malware in sbrugna...

EUVD-2011-1195

Malware in sbrugna...

EUVD-2005-3050

Malware in sbrugna...

EUVD-2005-0733

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2011-1187

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Google Chrome before 10.0.648.127 allows remote attackers to bypass the Same Origin Policy via unspecified vectors, related to an error message leak...

CVE-2011-3788

PhpSecInfo 0.2.1 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by Test/TestSuhosin.php and certain other files...

Security Bulletin: The IBM® Engineering Lifecycle Management is impacted by vulnerability which can allow remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser

Summary A vulnerability has been identified under which sensitive application information might be leaked to a remote attacker when a detailed technical error message is returned in the browser which is being used in IBM Engineering Lifecycle Management - IBM Jazz. This bulletin contains...

Hillstone Next Generation FireWall 安全漏洞

Hillstone Next Generation FireWall is a firewall from China-based Hillstone. A security vulnerability exists in Hillstone Next Generation FireWall versions prior to 5.5R8P1 through 5.5R8P23, which originates from the generation of an error message containing sensitive information...

PT-2024-4824 · Ibm · Ibm Infosphere Information Server

Name of the Vulnerable Software and Affected Versions: IBM InfoSphere Information Server version 11.7 Description: The issue is related to a potential information leak in error messages. It may allow a remote attacker to obtain sensitive information when a detailed technical error message is...

CVE-2023-32755

CVE-2023-32755 affects e-Excellence U-Office Force. The web service may reveal partial sensitive system information via crafted commands in error messages; no concrete patch/version is provided in the sources. Monitor for updates and advisories from multiple vendors.

AZL-26810 CVE-2023-28319 affecting package rust for versions less than 1.72.0-2

A use after free vulnerability exists in curl v8.1.0 in the way libcurl offers a feature to verify an SSH server's public key using a SHA 256 hash. When this check fails, libcurl would free the memory for the fingerprint before it returns an error message containing the now freed hash. This flaw...