19 matches found
EUVD-2011-4987
Malware in sbrugna...
EUVD-2025-7349
Malicious code in bioql PyPI...
SUSE CVE-2025-6624
Versions of the package snyk before 1.1297.3 are vulnerable to Insertion of Sensitive Information into Log File through local Snyk CLI debug logs. Container Registry credentials provided via environment variables or command line arguments can be exposed when executing Snyk CLI in DEBUG or...
CVE-2025-0071
SAP Web Dispatcher and Internet Communication Manager allow an attacker with administrative privileges to enable debugging trace mode with a specific parameter value. This exposes unencrypted passwords in the logs, causing a high impact on the confidentiality of the application. There is no impac...
CVE-2025-0071
SAP Web Dispatcher and Internet Communication Manager allow an attacker with administrative privileges to enable debugging trace mode with a specific parameter value. This exposes unencrypted passwords in the logs, causing a high impact on the confidentiality of the application. There is no impac...
CVE-2025-0071 Information Disclosure vulnerability in SAP Web Dispatcher and Internet Communication Manager
SAP Web Dispatcher and Internet Communication Manager allow an attacker with administrative privileges to enable debugging trace mode with a specific parameter value. This exposes unencrypted passwords in the logs, causing a high impact on the confidentiality of the application. There is no impac...
CVE-2025-0071 Information Disclosure vulnerability in SAP Web Dispatcher and Internet Communication Manager
SAP Web Dispatcher and Internet Communication Manager allow an attacker with administrative privileges to enable debugging trace mode with a specific parameter value. This exposes unencrypted passwords in the logs, causing a high impact on the confidentiality of the application. There is no impac...
PT-2024-2258 · Unknown · Trace Mode 7
Name of the Vulnerable Software and Affected Versions: TRACE MODE 7 affected versions not specified Description: The issue is related to the storage of confidential information in unencrypted form in memory. Exploitation of this issue could allow an attacker to gain unauthorized access to protect...
PT-2023-7551 · Unknown · Trace Mode
Name of the Vulnerable Software and Affected Versions: TRACE MODE affected versions not specified Description: The issue is related to the unencrypted storage of credentials in the SCADA system. Exploitation of this issue could allow an attacker to modify user privileges, potentially granting...
PT-2023-7550 · Unknown · Trace Mode
Name of the Vulnerable Software and Affected Versions: TRACE MODE affected versions not specified Description: The issue is related to the storage of unencrypted credentials in the SCADA system. Exploitation of this issue could allow an attacker to substitute a password hash from one user to...
Important: Red Hat Security Advisory: kernel security, bug fix, and enhancement update
An update for kernel is now available for Red Hat Enterprise Linux 8.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...
DEBIAN-CVE-2020-11993
Apache HTTP Server versions 2.4.20 to 2.4.43 When trace/debug was enabled for the HTTP/2 module and on certain traffic edge patterns, logging statements were made on the wrong connection, causing concurrent use of memory pools. Configuring the LogLevel of modhttp2 above "info" will mitigate this...
UBUNTU-CVE-2020-11993
Apache HTTP Server versions 2.4.20 to 2.4.43 When trace/debug was enabled for the HTTP/2 module and on certain traffic edge patterns, logging statements were made on the wrong connection, causing concurrent use of memory pools. Configuring the LogLevel of modhttp2 above "info" will mitigate this...
CVE-2011-5087
Unspecified vulnerability in AdAstrA TRACE MODE Data Center allows remote attackers to read arbitrary files via unknown vectors, as demonstrated by the GLEG Agora SCADA+ Exploit Pack for Immunity CANVAS...
CVE-2011-5087
Unspecified vulnerability in AdAstrA TRACE MODE Data Center allows remote attackers to read arbitrary files via unknown vectors, as demonstrated by the GLEG Agora SCADA+ Exploit Pack for Immunity CANVAS...
Design/Logic Flaw
Unspecified vulnerability in AdAstrA TRACE MODE Data Center allows remote attackers to read arbitrary files via unknown vectors, as demonstrated by the GLEG Agora SCADA+ Exploit Pack for Immunity CANVAS...
CVE-2011-5087
Summary: CVE-2011-5087 is described as an unspecified vulnerability in AdAstrA TRACE MODE Data Center that allows remote attackers to read arbitrary files through unknown vectors, with demonstration tied to the GLEG Agora SCADA+ Exploit Pack for Immunity CANVAS. Affected product (per documents): ...
CVE-2011-5087
Unspecified vulnerability in AdAstrA TRACE MODE Data Center allows remote attackers to read arbitrary files via unknown vectors, as demonstrated by the GLEG Agora SCADA+ Exploit Pack for Immunity CANVAS...
FreeBSD : sudo -- arbitrary command execution (1b725079-9ef6-11da-b410-000e0c2e438a)
Tavis Ormandy reports : The bash shell uses the value of the PS4 environment variable after expansion as a prefix for commands run in execution trace mode. Execution trace mode xtrace is normally set via bash's -x command line option or interactively by running 'set -o xtrace'. However, it may al...