Lucene search
+L

31 matches found

ATTACKERKB
ATTACKERKB
added 2026/07/08 8:45 a.m.6 views

CVE-2026-6280

Exposure of sensitive information due to incompatible policies vulnerability in NOMYSOFT Informatics Education and Consulting Inc. Nomysem allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Nomysem: through 08072026. NOTE: The vendor was contacted early about this...

6.5CVSS5.9AI score0.00223EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/07/08 8:45 a.m.34 views

CVE-2026-6280 Improper Access Control in Nomysoft Informatics' Nomysem

Exposure of sensitive information due to incompatible policies vulnerability in NOMYSOFT Informatics Education and Consulting Inc. Nomysem allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Nomysem: through 08072026. NOTE: The vendor was contacted early about this...

6.5CVSS0.00223EPSS
Exploits0References1
EUVD
EUVD
added 2026/07/08 8:45 a.m.9 views

EUVD-2026-42209

Exposure of sensitive information due to incompatible policies vulnerability in NOMYSOFT Informatics Education and Consulting Inc. Nomysem allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Nomysem: through 08072026. NOTE: The vendor was contacted early about this...

6.5CVSS5.9AI score0.00223EPSS
Exploits0References1
Snyk
Snyk
added 2025/12/26 6:30 a.m.3 views

Exposure of Sensitive Information Due to Incompatible Policies

Overview Affected versions of this package are vulnerable to Exposure of Sensitive Information Due to Incompatible Policies due to insufficient access validation to private user projects. An attacker can gain unauthorized access to sensitive project information by directly accessing private proje...

8.6CVSS6.6AI score0.00328EPSS
Exploits0References2
Snyk
Snyk
added 2025/12/26 6:30 a.m.2 views

Exposure of Sensitive Information Due to Incompatible Policies

Overview Affected versions of this package are vulnerable to Exposure of Sensitive Information Due to Incompatible Policies due to insufficient access validation to private user projects. An attacker can gain unauthorized access to sensitive project information by directly accessing private proje...

8.6CVSS6.6AI score0.00328EPSS
Exploits0References2
Snyk
Snyk
added 2025/12/26 6:30 a.m.2 views

Exposure of Sensitive Information Due to Incompatible Policies

Overview Affected versions of this package are vulnerable to Exposure of Sensitive Information Due to Incompatible Policies due to insufficient access validation to private user projects. An attacker can gain unauthorized access to sensitive project information by directly accessing private proje...

8.6CVSS6.6AI score0.00328EPSS
Exploits0References2
Snyk
Snyk
added 2025/12/26 6:30 a.m.3 views

Exposure of Sensitive Information Due to Incompatible Policies

Overview Affected versions of this package are vulnerable to Exposure of Sensitive Information Due to Incompatible Policies due to insufficient access validation to private user projects. An attacker can gain unauthorized access to sensitive project information by directly accessing private proje...

8.6CVSS6.6AI score0.00328EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/11/15 12:47 a.m.10 views

CVE-2025-54342

A vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2. There is Exposure of Sensitive Information because of Incompatible Policies...

3.3CVSS6.7AI score0.00085EPSS
Exploits0References1
NVD
NVD
added 2025/11/14 6:15 p.m.8 views

CVE-2025-54342

A vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2. There is Exposure of Sensitive Information because of Incompatible Policies...

3.3CVSS0.00085EPSS
Exploits0References2
OSV
OSV
added 2025/11/14 6:15 p.m.5 views

CVE-2025-54342

A vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2. There is Exposure of Sensitive Information because of Incompatible Policies...

3.3CVSS5.7AI score0.00085EPSS
Exploits0References2
CVE
CVE
added 2025/11/14 12:0 a.m.14 views

CVE-2025-54342

Desktop Alert PingAlert has a vulnerability in its Application Server affecting versions 6.1.0.11–6.1.1.2, caused by policy incompatibility that leads to exposure of sensitive information. The CVE description and connected sources confirm an information disclosure issue with local access, low com...

3.3CVSS6.4AI score0.00085EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/11/14 12:0 a.m.4 views

CVE-2025-54342

A vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2. There is Exposure of Sensitive Information because of Incompatible Policies...

6.4AI score0.00085EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/11/14 12:0 a.m.7 views

PT-2025-46981

Name of the Vulnerable Software and Affected Versions Desktop Alert PingAlert versions 6.1.0.11 through 6.1.1.2 Description A flaw exists in the Application Server of Desktop Alert PingAlert that leads to the exposure of sensitive information due to incompatible policies. Recommendations Update t...

3.3CVSS6.2AI score0.00085EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-58748

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00477EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:37 a.m.8 views

CVE-2024-45624

Exposure of sensitive information due to incompatible policies issue exists in Pgpool-II. If a database user accesses a query cache, table data unauthorized for the user may be retrieved...

7.5CVSS6.3AI score0.00528EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2025/02/28 5:11 p.m.7 views

CVE-2025-24316 Dario Health USB-C Blood Glucose Monitoring System Starter Kit Android Application Exposure of Sensitive Information Due to Incompatible Policies

The Dario Health Internet-based server infrastructure is vulnerable due to exposure of development environment details, which could lead to unsafe functionality...

6.9CVSS5.3AI score0.00286EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/01/28 12:0 a.m.6 views

The vulnerability of IBM Concert Software’s artificial intelligence-based automation tools lies in the insufficient protection of sensitive data. This allows attackers to gain unauthorized access to protected information.

The vulnerability of IBM Concert Software’s artificial intelligence-based automation tools stems from insufficient protection of operational data due to the use of incompatible policies. Exploiting this vulnerability can allow unauthorized actors to gain unauthorized access to protected informati...

5.3CVSS5.4AI score0.00325EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2024/10/01 9:47 a.m.13 views

CVE-2023-3441 Exposure of Sensitive Information Due to Incompatible Policies in GitLab

An issue has been discovered in GitLab EE/CE affecting all versions starting from 8.0 before 16.4. The product did not sufficiently warn about security implications of granting merge rights to protected branches...

6.6CVSS6.6AI score0.00554EPSS
Exploits1References4
NVD
NVD
added 2024/09/12 5:15 a.m.23 views

CVE-2024-45624

Exposure of sensitive information due to incompatible policies issue exists in Pgpool-II. If a database user accesses a query cache, table data unauthorized for the user may be retrieved...

7.5CVSS0.00528EPSS
Exploits0References3
OSV
OSV
added 2024/09/12 5:15 a.m.22 views

CVE-2024-45624

Exposure of sensitive information due to incompatible policies issue exists in Pgpool-II. If a database user accesses a query cache, table data unauthorized for the user may be retrieved...

6.3AI score
Exploits0References2
Rows per page
Query Builder