Lucene search
K

13 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-1999-1205

Malware in sbrugna...

3.6CVSS6.4AI score0.00337EPSS
Exploits0References3
Prion
Prion
added 2023/08/15 7:15 p.m.19 views

Design/Logic Flaw

Broadcom RAID Controller web interface is vulnerable due to exposure of sensitive password information in the URL as a URL search parameter...

5CVSS7.5AI score0.00481EPSS
Exploits0References1Affected Software1
Veracode
Veracode
added 2019/01/15 9:15 a.m.27 views

Information Disclosure

tfm-rubygem-fusorui is vulnerable to information disclosure attacks. The vulnerability exists as the web interface in Red Hat QuickStart Cloud Installer QCI 1.0 does not mask passwords fields, which allows physically proximate attackers to obtain sensitive password information by reading the...

4.6CVSS4.8AI score0.00416EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2017/07/17 9:29 p.m.18 views

CVE-2017-7947

NetApp Clustered Data ONTAP before 8.3.2P11, 9.0 before P4, and 9.1 before P5 allow attackers to obtain sensitive password information by leveraging logging of passwords entered non-interactively on the command line...

6.5CVSS6.6AI score0.01296EPSS
Exploits0References1
NVD
NVD
added 2017/05/02 2:59 p.m.21 views

CVE-2016-5810

upAdminPg.asp in Advantech WebAccess before 8.120160519 allows remote authenticated administrators to obtain sensitive password information via unspecified vectors...

4.9CVSS5.1AI score0.15356EPSS
Exploits2References2
Cvelist
Cvelist
added 2017/05/02 2:0 p.m.29 views

CVE-2016-5810

upAdminPg.asp in Advantech WebAccess before 8.120160519 allows remote authenticated administrators to obtain sensitive password information via unspecified vectors...

4.9AI score0.15356EPSS
Exploits2References2
CVE
CVE
added 2017/05/02 2:0 p.m.53 views

CVE-2016-5810

Advantech WebAccess vulnerable upAdminPg.asp (before 8.1_20160519) exposes password information to remote authenticated administrators via unspecified vectors. The CVE-2016-5810 issue is classified as an information-disclosure vulnerability in the upAdminPg.asp component, enabling an admin higher...

4.9CVSS5AI score0.15356EPSS
Exploits2References2Affected Software1
Prion
Prion
added 2017/04/20 5:59 p.m.10 views

Default credentials

oVirt Engine before 4.0.3 does not include DWHDBPASSWORD in the list of keys to hide in log files, which allows local users to obtain sensitive password information by reading engine log files...

2.1CVSS6.5AI score0.00347EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2016/11/30 8:0 p.m.22 views

CVE-2016-2917

The notifications component in IBM TRIRIGA Applications 10.4 and 10.5 before 10.5.1 allows remote authenticated users to obtain sensitive password information, and consequently gain privileges, via unspecified vectors...

8.3AI score0.01247EPSS
Exploits0References2
NVD
NVD
added 2016/10/03 4:9 p.m.16 views

CVE-2016-7442

The Frontend component in Sophos UTM with firmware 9.405-5 and earlier allows local administrators to obtain sensitive password information by reading the "value" field of the proxy user settings in "system settings / scan settings / anti spam" configuration tab...

4.4CVSS4.5AI score0.00538EPSS
Exploits2References3
Cvelist
Cvelist
added 2016/10/03 4:0 p.m.21 views

CVE-2016-7397

The Frontend component in Sophos UTM with firmware 9.405-5 and earlier allows local administrators to obtain sensitive password information by reading the "value" field of the SMTP user settings in the notifications configuration tab...

4.5AI score0.00538EPSS
Exploits2References3
Prion
Prion
added 2015/02/17 3:59 p.m.16 views

Default credentials

The ePO extension in McAfee Data Loss Prevention Endpoint DLPe before 9.3.400 allows remote authenticated users to obtain sensitive password information via a crafted URL...

4CVSS6.3AI score0.01332EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2015/02/17 3:0 p.m.66 views

CVE-2015-1618

The CVE-2015-1618 issue affects the McAfee Data Loss Prevention Endpoint (DLPe) ePO extension prior to 9.3.400. A remote, authenticated user can obtain sensitive password information via a specially crafted URL, due to insufficient access checks in the ePO extension. Impact is information disclos...

4CVSS6AI score0.01332EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder