Lucene search
K

14 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/05/21 2:44 p.m.12 views

Security Bulletin: IBM Guardium Data Protection is affected by Exposure of Sensitive Information vulnerability (CVE-2026-8405)

Summary IBM Guardium Data Protection has addressed this vulnerability in an update. Vulnerability Details CVEID:CVE-2026-8405 DESCRIPTION: IBM Guardium Data Protection's add-on feature of Guardium Data Protection named "Long Term Retention" LTR can expose sensitive credentials in debug mode...

6.5CVSS5.8AI score0.00228EPSS
Exploits0Affected Software1
OSV
OSV
added 2025/11/28 5:16 p.m.4 views

CVE-2025-13683

Exposure of credentials in unintended requests in Devolutions Server, Remote Desktop Manager on Windows.This issue affects Devolutions Server: through 2025.3.8.0; Remote Desktop Manager: through 2025.3.23.0...

6.5CVSS5.8AI score0.00346EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/28 4:1 p.m.4 views

CVE-2025-13758

Exposure of credentials in unintended requests in Devolutions Server.This issue affects Server: through 2025.2.20, through 2025.3.8...

3.5CVSS7AI score0.00258EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-28347

Malware in sbrugna...

5.5CVSS5.6AI score0.00301EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-42688

Malicious code in bioql PyPI...

8.7CVSS6.6AI score0.00342EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/20 1:58 p.m.3 views

CVE-2025-8448

CWE-200: Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists that could cause unauthorized access to sensitive credential data when an attacker is able to capture local SMB traffic between a valid user within the BMS network and the vulnerable products...

1CVSS6.7AI score0.0018EPSS
Exploits0References1
OSV
OSV
added 2025/01/24 8:40 p.m.8 views

GHSA-6729-95V3-PJC2 HL7 FHIR IG Publisher potentially exposes GitHub repo user and credential information

Impact In CI contexts, the IG Publisher CLI uses git commands to determine the URL of the originating repo. If the repo was cloned, or otherwise set to use a repo that uses a username and credential based URL, the entire URL will be included in the built Implementation Guide, exposing username an...

4.2CVSS4.7AI score0.00176EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/10/08 12:0 a.m.5 views

PT-2024-8135 · Unknown · Harmony Industrial Pc Series

Name of the Vulnerable Software and Affected Versions: Harmony Industrial PC series affected versions not specified Description: The issue is related to the exposure of sensitive information to an unauthorized actor, which could cause exposure of credentials when an attacker has access to the...

10CVSS6.5AI score0.00587EPSS
Exploits0References21
Cvelist
Cvelist
added 2023/12/06 1:29 p.m.28 views

CVE-2023-32268 Administrator equivalent Filr user can access proxy administrator credentials

Exposure of Proxy Administrator Credentials An authenticated administrator equivalent Filr user can access the credentials of proxy administrators...

7.2CVSS7.2AI score0.00676EPSS
Exploits0References1
NVD
NVD
added 2023/11/03 8:15 p.m.23 views

CVE-2022-3172

A security issue was discovered in kube-apiserver that allows an aggregated API server to redirect client traffic to any URL. This could lead to the client performing unexpected actions as well as forwarding the client's API server credentials to third parties...

8.2CVSS6.3AI score0.02464EPSS
Exploits1References3
OSV
OSV
added 2023/10/15 7:15 p.m.31 views

CVE-2018-25091

urllib3 before 1.24.2 does not remove the authorization HTTP header when following a cross-origin redirect i.e., a redirect that differs in host, port, or scheme. This can allow for credentials in the authorization header to be exposed to unintended hosts or transmitted in cleartext. NOTE: this...

6.1CVSS9.8AI score
Exploits0References3
Cvelist
Cvelist
added 2022/09/07 8:20 a.m.28 views

CVE-2021-36782 Rancher: Plaintext storage and exposure of credentials in Rancher API and cluster.management.cattle.io object

A Cleartext Storage of Sensitive Information vulnerability in SUSE Rancher allows authenticated Cluster Owners, Cluster Members, Project Owners, Project Members and User Base to use the Kubernetes API to retrieve plaintext version of sensitive data. This issue affects: SUSE Rancher Rancher versio...

9.9CVSS9.4AI score0.0293EPSS
Exploits3References2
Positive Technologies
Positive Technologies
added 2021/04/02 12:0 a.m.3 views

PT-2021-9429 · Unknown · Wiz Colors A60

Name of the Vulnerable Software and Affected Versions: WiZ Colors A60 version 1.14.0 Description: An issue was discovered where API credentials are locally logged, potentially exposing sensitive information. Recommendations: For WiZ Colors A60 version 1.14.0, consider restricting access to the...

5.5CVSS6.9AI score0.00309EPSS
Exploits1References3
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 7:48 p.m.17 views

Security Bulletin: IBM Tealeaf Customer Experience allows user authentication via unencrypted GET request (CVE-2015-4990)

Summary The IBM Tealeaf Customer Experience portal allows a user to authenticate via means that could result in exposure of credentials. Vulnerability Details CVEID: CVE-2015-4990 DESCRIPTION: The IBM Tealeaf Customer Experience could allow a local privileged user to obtain the authentication...

4CVSS1.5AI score0.00254EPSS
Exploits0Affected Software1
Rows per page
Query Builder