Lucene search
K

51 matches found

CNNVD
CNNVD
added 2022/10/07 12:0 a.m.6 views

SAMSUNG Mobile devices 日志信息泄露漏洞

SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc. from the South Korean company Samsung SAMSUNG. A security vulnerability exists in SAMSUNG Mobile devices version 13.5.0, which stems from a Samsung account sensitive log information disclosure...

5.5CVSS5.8AI score0.00177EPSS
Exploits0References2
OSV
OSV
added 2022/01/19 11:15 p.m.2 views

DEBIAN-CVE-2022-21704

log4js-node is a port of log4js to node.js. In affected versions default file permissions for log files created by the file, fileSync and dateFile appenders are world-readable in unix. This could cause problems if log files contain sensitive information. This would affect any users that have not...

5.5CVSS5.8AI score0.00302EPSS
Exploits0References1
OSV
OSV
added 2022/01/19 11:15 p.m.3 views

UBUNTU-CVE-2022-21704

log4js-node is a port of log4js to node.js. In affected versions default file permissions for log files created by the file, fileSync and dateFile appenders are world-readable in unix. This could cause problems if log files contain sensitive information. This would affect any users that have not...

5.5CVSS7AI score0.00302EPSS
Exploits0References6
CNNVD
CNNVD
added 2021/08/06 12:0 a.m.6 views

NetApp Cloud Manager 信息泄露漏洞

Netapp NetApp Cloud Manager is an application from Netapp, Inc. which provides centralized orchestration of hybrid cloud storage and data management services. An information disclosure vulnerability exists in NetApp Cloud Manager, which stems from a flaw in the configuration of the product. An...

4.3CVSS5.2AI score0.00646EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/04/23 12:0 a.m.7 views

IBM Spectrum Protect Plus 日志信息泄露漏洞

IBM Spectrum Protect Plus is a suite of data protection platforms from IBM USA. The platform provides organizations with a single point of control and management and supports backup and recovery for virtual, physical and cloud environments of all sizes. An information disclosure vulnerability...

6.2CVSS5.4AI score0.00266EPSS
Exploits0References5
OSV
OSV
added 2020/03/13 4:15 p.m.6 views

CVE-2019-16157

An information exposure vulnerability in Fortinet FortiWeb 6.2.0 CLI and earlier may allow an authenticated user to view sensitive information being logged via diagnose debug commands...

6.5CVSS6.6AI score0.00859EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2019/12/12 12:0 a.m.5 views

PT-2019-13485 · Hms Networks · En100 Ethernet Module Iec 61850 Variant +4

Name of the Vulnerable Software and Affected Versions: EN100 Ethernet module DNP3 variant All versions EN100 Ethernet module IEC 61850 variant All versions V4.37 EN100 Ethernet module IEC104 variant All versions EN100 Ethernet module Modbus TCP variant All versions EN100 Ethernet module PROFINET ...

5.3CVSS4.9AI score0.016EPSS
Exploits0References3
Veracode
Veracode
added 2018/07/03 7:18 a.m.10 views

Information Disclosure

salt is vulnerable to information disclosures. The application does not mask sensitive information when writing the logs in debug mode, allowing a malicious user to gain access to passwords by executing the salt-ssh -l debug command...

6.6AI score
Exploits0
CNVD
CNVD
added 2016/04/16 12:0 a.m.4 views

Ecava IntegraXor Information Disclosure Vulnerability

Ecava IntegraXor is a set of Web-based tools for creating and running HMI interfaces for SCADA systems. A security vulnerability exists in Ecava IntegraXor that could be exploited by a remote attacker to obtain sensitive log information...

5.3CVSS6.7AI score0.01176EPSS
Exploits0References1
CNVD
CNVD
added 2015/10/30 12:0 a.m.4 views

TIBCO Spotfire Server Information Disclosure Vulnerability (CNVD-2015-07301)

TIBCO Spotfire Server is based on TIBCO Spotfire data analysis and mining tools of TIBCO Software Inc. of the United States to provide integration, operation and management of the platform for the enterprise. TIBCO Spotfire Server versions 5.5.x before 5.5.4, 6.0.x before 6.0.5, 6.5.x before 6.5....

5CVSS6.4AI score0.02133EPSS
Exploits0References1
OSV
OSV
added 2014/04/17 2:55 p.m.25 views

UBUNTU-CVE-2014-0085

JBoss Fuse did not enable encrypted passwords by default in its usage of Apache Zookeeper. This permitted sensitive information disclosure via logging to local users. Note: this description has been updated; previous text mistakenly identified the source of the flaw as Zookeeper. Previous text:...

2.1CVSS5.7AI score0.00367EPSS
Exploits0References2
Rows per page
Query Builder