CVE-2025-12772

Brocade SANnav before 2.4.0b logs the Brocade Fabric OS Switch admin password on the SANnav support save logs. When OOM occurs on a Brocade SANnav server, the call stack trace for the Brocade switch is also collected in the heap dump file which contains this switch password in clear text. The...

Denial Of Service (DoS)

Pyftpd is vulnerable to denial of service and information disclosure. The vulnerability existed because logs files with predictable names in a temporary directory are created, which allows local users to cause a denial of service and obtain sensitive information...

CVE-2019-3741

Dell EMC Unity and UnityVSA versions prior to 5.0.0.0.5.116 contain a plain-text password storage vulnerability. A Unisphere user’s including the admin privilege user password is stored in a plain text in Unity Data Collection bundle logs files for troubleshooting. A local authenticated attacker...

Roundcube Webmail Information Disclosure Vulnerability (CNVD-2017-08084)

RoundCube Webmail is a browser-based IMAP client mail client that supports address book management, message searching, spell checking and more. An information disclosure vulnerability exists in Roundcube Webmail version 1.1.x before 1.1.2. A remote attacker can exploit this vulnerability by readi...