CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

RedhatCVE•added 2025/09/14 5:31 p.m.•4 views

CVE-2025-4234

A problem with the Palo Alto Networks Cortex XDR Microsoft 365 Defender Pack can result in exposure of user credentials in application logs. Normally, these application logs are only viewable by local users and are included when generating logs for troubleshooting purposes. This means that these...

2.4CVSS6.5AI score0.00029EPSS

Exploits0References1

RedhatCVE•added 2025/08/14 3:49 p.m.•8 views

CVE-2025-3831

Log files uploaded during troubleshooting by the Harmony SASE agent may have been accessible to unauthorized parties...

9.8CVSS7.3AI score0.00276EPSS

Exploits0References1

NVD•added 2025/08/12 3:15 p.m.•5 views

CVE-2025-3831

Log files uploaded during troubleshooting by the Harmony SASE agent may have been accessible to unauthorized parties...

9.8CVSS0.00276EPSS

Exploits0References1

CVE•added 2025/08/12 2:48 p.m.•21 views

CVE-2025-3831

CVE-2025-3831 affects Check Point Harmony SASE agent. The root cause was a shared SFTP key embedded in the software with read/list permissions, granting broader access than intended to log files uploaded during troubleshooting. This could allow unauthorized parties to access logs (potentially inc...

9.8CVSS7.2AI score0.00276EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2025/08/12 12:0 a.m.•4 views

PT-2025-32673 · Check Point · Harmony Sase Agent

Name of the Vulnerable Software and Affected Versions: Harmony SASE agent affected versions not specified Description: Log files uploaded during troubleshooting by the Harmony SASE agent may have been accessible to unauthorized parties. Recommendations: At the moment, there is no information abou...

8.1CVSS7AI score0.00276EPSS

Exploits0References3

OSV•added 2024/06/12 5:15 p.m.•2 views

CVE-2024-5908

A problem with the Palo Alto Networks GlobalProtect app can result in exposure of encrypted user credentials, used for connecting to GlobalProtect, in application logs. Normally, these application logs are only viewable by local users and are included when generating logs for troubleshooting...

7.5CVSS7.1AI score0.00323EPSS

Exploits0References1

Citrix•added 2023/10/23 12:0 a.m.•10 views

Storefront Installation Error Adding Local Administrators to CitrixStorefrontAdministrators Group

Install StoreFront with below error: There was an error adding user accounts in the Administrators local group to the CitrixStorefrontAdministrators local group.See the log files described in the article 'Troubleshoot Storefront' in the Storefront product documentation. Try adding these user...

6.9AI score

Exploits0

OSV•added 2023/04/15 12:15 a.m.•1 views

CVE-2023-27571

An issue was discovered in DG3450 Cable Gateway AR01.02.056.18041520711.NCS.10. The troubleshootinglogsdownload.php log file download functionality does not check the session cookie. Thus, an attacker can download all log files...

5.3CVSS5.8AI score0.00316EPSS

Exploits3References3

Prion•added 2020/05/13 7:15 p.m.•15 views

Design/Logic Flaw

Under certain circumstances a user's password may be logged in cleartext in the PanGPS.log diagnostic file when logs are collected for troubleshooting on GlobalProtect app also known as GlobalProtect Agent for MacOS and Windows. For this issue to occur all of these conditions must be true: 1 'Sav...

1.7CVSS6AI score0.00058EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by