3856 matches found
PYSEC-2018-104
python-oslo-middleware before versions 3.8.1, 3.19.1, 3.23.1 is vulnerable to an information disclosure. Software using the CatchError class could include sensitive values in a traceback's error message. System users could exploit this flaw to obtain sensitive information from OpenStack component...
CVE-2017-2592
python-oslo-middleware before versions 3.8.1, 3.19.1, 3.23.1 is vulnerable to an information disclosure. Software using the CatchError class could include sensitive values in a traceback's error message. System users could exploit this flaw to obtain sensitive information from OpenStack component...
CVE-2017-2592
python-oslo-middleware before versions 3.8.1, 3.19.1, 3.23.1 is vulnerable to an information disclosure. Software using the CatchError class could include sensitive values in a traceback's error message. System users could exploit this flaw to obtain sensitive information from OpenStack component...
CVE-2017-2592
python-oslo-middleware before versions 3.8.1, 3.19.1, 3.23.1 is vulnerable to an information disclosure. Software using the CatchError class could include sensitive values in a traceback's error message. System users could exploit this flaw to obtain sensitive information from OpenStack component...
UBUNTU-CVE-2017-2592
python-oslo-middleware before versions 3.8.1, 3.19.1, 3.23.1 is vulnerable to an information disclosure. Software using the CatchError class could include sensitive values in a traceback's error message. System users could exploit this flaw to obtain sensitive information from OpenStack component...
Secure Mail - Use Safari as the Default Browser - No Browser Installed
From Secure Mail on the iOS devices you could receive this error message "No Browser Installed. Please install Secure Web or another web browser to open this link" when try to open a hyperlink or a url from an email message. The iOS device has the standard Safari browser installed...
MS07-017: Vulnerability in GDI could allow remote code execution
MS07-017: Vulnerability in GDI could allow remote code execution Microsoft has released security bulletin MS07-017. The security bulletin contains all the relevant information about the security update. This information includes file manifest information and deployment options. To view the comple...
HackerOne: Invalid Phabricator API token revealed through error message when escalating a report
Summary While trying to create a phabricator task by escalating to phabricator, error message contains the API token as a part of the pop up. This is seen when a user tries to enter an invalid API token. Description It was seen that after setting up phabricator integration in a program, when tryi...
Error: "500 Internal Server" when Clicking on 'Edit' for a Device on XenMobile
When selecting a device under Manage r Devices and clicking on Edit. Customer is receiving the Error: 500 Server Internal Error exid:16C0...
Information Disclosure
ajenti is vulnerable to information disclosure attacks. When malformed JSON is passed to the server in a request, the error message returned shows the path to the related tool on the server...
Mail.ru: Local paths disclosure through error message
bonus.mail.ru disclosed trace information with absolute paths via 5xx error messages bonus.mail.ru is not covered by bug bounty scope...
CVE-2016-0343
IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before 3.4.2.3, and 3.5 before 3.5.0.1 allows remote authenticated users to obtain sensitive information by reading an error message. IBM X-Force ID: 111784...
Information disclosure
IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before 3.4.2.3, and 3.5 before 3.5.0.1 allows remote authenticated users to obtain sensitive information by reading an error message. IBM X-Force ID: 111784...
CVE-2016-0367
IBM Security Identity Manager Virtual Appliance 7.0.x before 7.0.1.3-ISS-SIM-IF0001 allows remote authenticated users to obtain sensitive information by reading an error message. IBM X-Force ID: 112072...
Fedora 27 : flatpak (2018-bd651734da)
This is a security fix release that fixes a sandbox escape in the flatpak dbus proxy. This issue was found by Gabriel Campana of The Google Security Team. Major changes in 0.10.3 - Fix dbus proxy vulnerability in authentication phase - Make permission handling ignore unknown permissions for...
Fedora 26 : flatpak (2018-b5ecac9405)
This is a security fix release that fixes a sandbox escape in the flatpak dbus proxy. This issue was found by Gabriel Campana of The Google Security Team. Major changes in 0.10.3 - Fix dbus proxy vulnerability in authentication phase - Make permission handling ignore unknown permissions for...
Error: "HdxSdkErrorDomain_Session error 8" When Launching VDI Through NetScaler Gateway Using Receiver for iOS 7.2.4
When launching VDI usingReceiver for iOS 7.2.4 the following error is shown: "HdxSdkErrorDomainSession error 8"...
SUSE-SU-2018:0235-1 Security update for gd
This update for gd fixes several issues. This security issue was fixed: - CVE-2018-5711: Prevent integer signedness error that could have lead to an infinite loop via a crafted GIF file allowing for DoS bsc1076391 This non-security issue was fixed: - Fixed gd2togif error message bsc1025223...
Error: "StoreFront MMC could not create the snap-in. The snap-in might not have been installed correctly"
StoreFront Management Console opens with the error message"MMC could not create the snap-in. The snap-in might not have been installed correctly"...
Error: "Cannot Process Provisioning File"
While running the StoreFront Services provisioning file for example, Receiverconfig.cr using Citrix Receiver 3.1, issues might be experienced. The following error message might appear: “Cannot process provisioning file”...