CVE-2026-7431

An incorrect permission assignment for critical resource of Ivanti Secure Access Client before 22.8R6 allows a local authenticated user to read or modify sensitive log data via write access to a shared memory section...

EUVD-2026-11350

A potential vulnerability was reported in the Lenovo FileZ Android application that, under certain conditions, could allow a local authenticated user to retrieve some sensitive data stored in a log file...

CVE-2025-59355

A vulnerability. When org.apache.linkis.metadata.util.HiveUtils.decode fails to perform Base64 decoding, it records the complete input parameter string in the log via logger.errorstr + "decode failed", e. If the input parameter contains sensitive information such as Hive Metastore keys, plaintext...

CVE-2022-50788 SOUND4 IMPACT/FIRST/PULSE/Eco <=2.x Information Disclosure via Log Directory

SOUND4 IMPACT/FIRST/PULSE/Eco =2.x contains an information disclosure vulnerability that allows unauthenticated attackers to access sensitive log files. Attackers can directly browse the /log directory to retrieve system and sensitive information without authentication...

EUVD-2014-2897

Malware in sbrugna...

EUVD-2021-16233

Malware in sbrugna...

EUVD-2019-8042

Malware in sbrugna...

EUVD-2019-13891

Malware in sbrugna...

EUVD-2015-5660

Malware in sbrugna...

EUVD-2025-31212

Malicious code in bioql PyPI...

EUVD-2023-31034

Malicious code in bioql PyPI...

EUVD-2023-29597

Malicious code in bioql PyPI...

EUVD-2022-42319

Malicious code in bioql PyPI...

CVE-2025-24520

CVE-2025-24520 affects Intel® Local Manageability Service prior to 2514.7.16.0. Inserting sensitive information into a log file may allow an authenticated local attacker to disclose data. Remediation: update LMS to 2514.7.16.0 or later. No exploitation details are provided in the documents; CVSS ...

GO-2025-3806 Juju vulnerable to sensitive log retrieval via authenticated endpoint without authorization in github.com/juju/juju

Juju vulnerable to sensitive log retrieval via authenticated endpoint without authorization in github.com/juju/juju...

CVE-2025-53512 Sensitive log retrieval in Juju

The /log endpoint on a Juju controller lacked sufficient authorization checks, allowing unauthorized users to access debug messages that could contain sensitive information...

CVE-2024-40091

Vilo 5 Mesh WiFi System = 5.16.1.33 lacks authentication in the Boa webserver, which allows remote, unauthenticated attackers to retrieve logs with sensitive system...

CVE-2020-29666

In Lan ATMService M3 ATM Monitoring System 6.1.0, due to a directory-listing vulnerability, a remote attacker can view log files, located in /websocket/logs/, that contain a user's cookie values and the predefined developer's cookie value...

Ubuntu 16.04 LTS / 18.04 LTS : Mistral vulnerabilities (USN-7465-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7465-1 advisory. It was discovered that Mistral incorrectly handled nested anchors in YAML files. An attacker could possibly use this issue to cause a denial ...

PT-2025-1441 · Ibm · Ibm Cloud Pak System

Name of the Vulnerable Software and Affected Versions: IBM Cloud Pak System versions 2.3.3.0 through 2.3.3.7 iFix1 Description: The issue allows an authenticated user to obtain sensitive information from log files. Recommendations: For IBM Cloud Pak System versions 2.3.3.0 through 2.3.3.7 iFix1,...