51 matches found
SAMSUNG Mobile devices 日志信息泄露漏洞
SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc. from the South Korean company Samsung SAMSUNG. A security vulnerability exists in SAMSUNG Mobile devices version 13.5.0, which stems from a Samsung account sensitive log information disclosure...
DEBIAN-CVE-2022-21704
log4js-node is a port of log4js to node.js. In affected versions default file permissions for log files created by the file, fileSync and dateFile appenders are world-readable in unix. This could cause problems if log files contain sensitive information. This would affect any users that have not...
UBUNTU-CVE-2022-21704
log4js-node is a port of log4js to node.js. In affected versions default file permissions for log files created by the file, fileSync and dateFile appenders are world-readable in unix. This could cause problems if log files contain sensitive information. This would affect any users that have not...
NetApp Cloud Manager 信息泄露漏洞
Netapp NetApp Cloud Manager is an application from Netapp, Inc. which provides centralized orchestration of hybrid cloud storage and data management services. An information disclosure vulnerability exists in NetApp Cloud Manager, which stems from a flaw in the configuration of the product. An...
IBM Spectrum Protect Plus 日志信息泄露漏洞
IBM Spectrum Protect Plus is a suite of data protection platforms from IBM USA. The platform provides organizations with a single point of control and management and supports backup and recovery for virtual, physical and cloud environments of all sizes. An information disclosure vulnerability...
CVE-2019-16157
An information exposure vulnerability in Fortinet FortiWeb 6.2.0 CLI and earlier may allow an authenticated user to view sensitive information being logged via diagnose debug commands...
PT-2019-13485 · Hms Networks · En100 Ethernet Module Iec 61850 Variant +4
Name of the Vulnerable Software and Affected Versions: EN100 Ethernet module DNP3 variant All versions EN100 Ethernet module IEC 61850 variant All versions V4.37 EN100 Ethernet module IEC104 variant All versions EN100 Ethernet module Modbus TCP variant All versions EN100 Ethernet module PROFINET ...
Information Disclosure
salt is vulnerable to information disclosures. The application does not mask sensitive information when writing the logs in debug mode, allowing a malicious user to gain access to passwords by executing the salt-ssh -l debug command...
Ecava IntegraXor Information Disclosure Vulnerability
Ecava IntegraXor is a set of Web-based tools for creating and running HMI interfaces for SCADA systems. A security vulnerability exists in Ecava IntegraXor that could be exploited by a remote attacker to obtain sensitive log information...
TIBCO Spotfire Server Information Disclosure Vulnerability (CNVD-2015-07301)
TIBCO Spotfire Server is based on TIBCO Spotfire data analysis and mining tools of TIBCO Software Inc. of the United States to provide integration, operation and management of the platform for the enterprise. TIBCO Spotfire Server versions 5.5.x before 5.5.4, 6.0.x before 6.0.5, 6.5.x before 6.5....
UBUNTU-CVE-2014-0085
JBoss Fuse did not enable encrypted passwords by default in its usage of Apache Zookeeper. This permitted sensitive information disclosure via logging to local users. Note: this description has been updated; previous text mistakenly identified the source of the flaw as Zookeeper. Previous text:...