Vulnerabilities > Information Exposure
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-03-21 | CVE-2018-17482 | Information Exposure vulnerability in Jollytech Lobby Track 8.2.186 Lobby Track Desktop could allow a local attacker to obtain sensitive information, caused by an error in Reports while in kiosk mode. | 5.5 |
| 2019-03-21 | CVE-2018-15532 | Information Exposure vulnerability in HP Synaptics Touchpad Driver 20180606 SynTP.sys in Synaptics Touchpad drivers before 2018-06-06 allows local users to obtain sensitive information about freed kernel addresses. | 3.8 |
| 2019-03-15 | CVE-2018-18205 | Information Exposure vulnerability in Top-Vision Cc8800Ce Firmware Topvision CC8800 CMTS C-E devices allow remote attackers to obtain sensitive information via a direct request for /WebContent/startup.tar.gz with userName=admin in a cookie. | 7.5 |
| 2019-03-15 | CVE-2018-17956 | Information Exposure vulnerability in Opensuse Yast2-Samba-Provision 1.0.1 In yast2-samba-provision up to and including version 1.0.1 the password for samba shares was provided on the command line to tools used by yast2-samba-provision, allowing local attackers to read them in the process list | 7.8 |
| 2019-03-14 | CVE-2018-1929 | Information Exposure vulnerability in IBM Rational Engineering Lifecycle Manager IBM Rational Engineering Lifecycle Manager 5.0 through 6.0.6 could allow a malicious user to be allowed to view any view if he knows the URL link of a the view, and access information that should not be able to see. | 4.3 |
| 2019-03-14 | CVE-2018-12224 | Information Exposure vulnerability in Intel Graphics Driver Buffer leakage in igdkm64.sys in Intel(R) Graphics Driver for Windows* before versions 10.18.x.5059 (aka 15.33.x.5059), 10.18.x.5057 (aka 15.36.x.5057), 20.19.x.5063 (aka 15.40.x.5063) 21.20.x.5064 (aka 15.45.x.5064) and 24.20.100.6373 may allow an authenticated user to potentially enable information disclosure via local access. | 3.3 |
| 2019-03-13 | CVE-2015-2254 | Information Exposure vulnerability in Huawei Oceanstor UDS Firmware Huawei OceanStor UDS devices with software before V100R002C01SPC102 might allow remote attackers to capture and change patch loading information resulting in the deletion of directory files and compromise of system functions when loading a patch. | 9.1 |
| 2019-03-12 | CVE-2019-3615 | Information Exposure vulnerability in Mcafee Database Security 4.6.6 Data Leakage Attacks vulnerability in the web interface in McAfee Database Security prior to the 4.6.6 March 2019 update allows local users to expose passwords via incorrectly auto completing password fields in the admin browser login screen. | 6.8 |
| 2019-03-12 | CVE-2018-17944 | Information Exposure vulnerability in Lexmark products On certain Lexmark devices that communicate with an LDAP or SMTP server, a malicious administrator can discover LDAP or SMTP credentials by changing that server's hostname to one that they control, and then capturing the credentials that are sent there. | 4.9 |
| 2019-03-11 | CVE-2018-2009 | Information Exposure vulnerability in IBM API Connect IBM API Connect v2018.1 and 2018.4.1 is affected by an information disclosure vulnerability in the consumer API. | 6.5 |