CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

A Plaintext Storage of a Password vulnerability in SUSE exposes the credentials for the HTTP proxy in the log files. This issue affects Container suse/manager/4.3/proxy-httpd:4.3.16.9.67.1: from ? before 4.3.33-150400.3.55.2; Container suse/manager/5.0/x8664/proxy-httpd:5.0.5.7.23.1: from ? befor...

6.9CVSS6.7AI score0.00141EPSS

Exploits0References1

NVD•added 2025/07/31 4:15 p.m.•2 views

CVE-2025-46809

6.9CVSS0.00141EPSS

Exploits0References1

Cvelist•added 2025/07/31 3:24 p.m.•7 views

CVE-2025-46809 Multi Linux Manager epxoses the plain text HTTP Proxy user:password in logs

6.9CVSS0.00141EPSS

Exploits0References1

CVE•added 2025/07/31 3:24 p.m.•12 views

CVE-2025-46809

CVE-2025-46809 is a vulnerability described as plaintext storage of a password: it exposes HTTP proxy credentials found in log files for SUSE Manager components. The affected items include container images and modules such as suse/manager/4.3/proxy-httpd, suse/manager/5.0/x86_64/proxy-httpd and -...

6.9CVSS6.1AI score0.00141EPSS

Exploits0References1

Vulnrichment•added 2025/07/31 3:24 p.m.•2 views

CVE-2025-46809 Multi Linux Manager epxoses the plain text HTTP Proxy user:password in logs

6.9CVSS6.1AI score0.00141EPSS

Exploits0References1

Positive Technologies•added 2025/07/31 12:0 a.m.•2 views

PT-2025-31552 · Suse · Suse Multi Linux Manager +5

Name of the Vulnerable Software and Affected Versions: SUSE Multi Linux Manager versions prior to 5.0.27-150600.3.33.1 Image SLES15-SP4-Manager-Server-4-3-BYOS versions prior to 4.3.87-150400.3.110.2 Image SLES15-SP4-Manager-Server-4-3-BYOS-Azure versions prior to 4.3.87-150400.3.110.2 Image...

6.9CVSS6.1AI score0.00141EPSS

Exploits0References5

RedhatCVE•added 2025/05/23 7:50 a.m.•5 views

CVE-2024-20490

A vulnerability in a logging function of Cisco Nexus Dashboard Fabric Controller NDFC and Cisco Nexus Dashboard Orchestrator NDO could allow an attacker with access to a tech support file to view sensitive information. This vulnerability exists because HTTP proxy credentials could be recorded in ...

8.6CVSS6.3AI score0.00339EPSS

Exploits0References1

Vulnrichment•added 2024/11/28 9:26 a.m.•11 views

CVE-2024-49502 Reflected XSS in Setup Wizard, HTTP Proxy credentials pane in spacewalk-web

A Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in the Setup Wizard, HTTP Proxy credentials pane in spacewalk-web allows attackers to attack users by providing specially crafted URLs to click. This issue affects Container...

4.6CVSS6.8AI score0.00052EPSS

Exploits0References1

SUSE CVE•added 2024/11/19 3:51 a.m.•1 views

SUSE CVE-2024-49502

3.5CVSS6.6AI score0.00052EPSS

Exploits0References6

NVD•added 2019/05/03 8:29 p.m.•10 views

CVE-2019-6158

An internal product security audit of Lenovo XClarity Administrator LXCA discovered HTTP proxy credentials being written to a log file in clear text. This only affects LXCA when HTTP proxy credentials have been configured. This affects LXCA versions 2.0.0 to 2.3.x...

8.7CVSS8.7AI score0.00318EPSS

Exploits0References2

OSV•added 2019/05/03 8:29 p.m.•1 views

CVE-2019-6158

5.9CVSS6.9AI score

Exploits0References2

Cvelist•added 2019/05/03 7:27 p.m.•13 views

CVE-2019-6158

8.7CVSS8.7AI score0.00318EPSS

Exploits0References2

Lenovo•added 2019/05/02 1:10 p.m.•69 views

XClarity Administrator (LXCA) Service Data May Include Proxy Credentials - US

Lenovo Security Advisory: LEN-26141 Potential Impact: Information disclosure Severity: High Scope of Impact: Lenovo-specific CVE Identifier: CVE-2019-6158 Summary Description: An internal product security audit of Lenovo XClarity Administrator LXCA discovered HTTP proxy credentials being written ...

4.3CVSS1.5AI score0.00318EPSS

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by