Vulnerabilities > Information Exposure

DATE CVE VULNERABILITY TITLE RISK
2021-05-06 CVE-2021-31918 A flaw was found in tripleo-ansible version as shipped in Red Hat Openstack 16.1. 0.0
2021-04-30 CVE-2021-21537 Information Exposure vulnerability in Dell Hybrid Client
Dell Hybrid Client versions prior to 1.5 contain an information exposure vulnerability.
local
low complexity
dell CWE-200
2.1
2021-04-30 CVE-2021-21536 Information Exposure vulnerability in Dell Hybrid Client
Dell Hybrid Client versions prior to 1.5 contain an information exposure vulnerability.
local
low complexity
dell CWE-200
2.1
2021-04-30 CVE-2021-21534 Information Exposure vulnerability in Dell Hybrid Client
Dell Hybrid Client versions prior to 1.5 contain an information exposure vulnerability.
local
low complexity
dell CWE-200
2.1
2021-04-29 CVE-2021-20092 Information Exposure vulnerability in Buffalo products
The web interfaces of Buffalo WSR-2533DHPL2 firmware version <= 1.02 and WSR-2533DHP3 firmware version <= 1.24 do not properly restrict access to sensitive information from an unauthorized actor.
network
low complexity
buffalo CWE-200
5.0
2021-04-29 CVE-2020-21997 Information Exposure vulnerability in Smartwares Home Easy Firmware
Smartwares HOME easy <=1.0.9 is vulnerable to an unauthenticated database backup download and information disclosure vulnerability.
network
low complexity
smartwares CWE-200
5.0
2021-04-28 CVE-2021-29483 ManageWiki is an extension to the MediaWiki project. 0.0
2021-04-28 CVE-2021-30169 The sensitive information of webcam device is not properly protected. 0.0
2021-04-27 CVE-2021-30638 Information Exposure vulnerability in Apache Tapestry 5.4.0
Information Exposure vulnerability in context asset handling of Apache Tapestry allows an attacker to download files inside WEB-INF if using a specially-constructed URL.
network
low complexity
apache CWE-200
5.0
2021-04-26 CVE-2021-21219 Information Exposure vulnerability in multiple products
Uninitialized data in PDFium in Google Chrome prior to 90.0.4430.72 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted PDF file.
4.3