Vulnerabilities > Information Exposure
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-01-31 | CVE-2018-18941 | Information Exposure vulnerability in Vignette Content Management 6 In Vignette Content Management version 6, it is possible to gain remote access to administrator privileges by discovering the admin password in the vgn/ccb/user/mgmt/user/edit/0,1628,0,00.html?uid=admin HTML source code, and then creating a privileged user account. | 9.8 |
| 2019-01-30 | CVE-2018-19440 | Information Exposure vulnerability in ARM Trusted Firmware-A ARM Trusted Firmware-A allows information disclosure. | 5.3 |
| 2019-01-30 | CVE-2018-12610 | Information Exposure vulnerability in Open-Xchange Appsuite OX App Suite 7.8.4 and earlier allows Information Exposure. | 5.3 |
| 2019-01-29 | CVE-2018-1976 | Information Exposure vulnerability in IBM API Connect IBM API Connect 5.0.0.0 through 5.0.8.4 is impacted by sensitive information disclosure via a REST API that could allow a user with administrative privileges to obtain highly sensitive information. | 4.9 |
| 2019-01-29 | CVE-2016-10740 | Information Exposure vulnerability in Atlassian Crowd Various resources in Atlassian Crowd before version 2.10.1 allow remote attackers with administration rights to learn the passwords of configured LDAP directories by examining the responses to requests for these resources. | 4.9 |
| 2019-01-24 | CVE-2018-5497 | Information Exposure vulnerability in Netapp Clustered Data Ontap Clustered Data ONTAP versions prior to 9.1P16, 9.3P10 and 9.4P5 are susceptible to a vulnerability which discloses sensitive information to an unauthorized user. | 4.4 |
| 2019-01-24 | CVE-2019-1653 | Information Exposure vulnerability in Cisco Rv320 Firmware and Rv325 Firmware A vulnerability in the web-based management interface of Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers could allow an unauthenticated, remote attacker to retrieve sensitive information. | 7.5 |
| 2019-01-24 | CVE-2019-1645 | Information Exposure vulnerability in Cisco Connected Mobile Experiences 10.2(1.0) A vulnerability in the Cisco Connected Mobile Experiences (CMX) software could allow an unauthenticated, adjacent attacker to access sensitive data on an affected device. | 4.3 |
| 2019-01-23 | CVE-2018-0187 | Information Exposure vulnerability in Cisco Identity Services Engine 2.4(0.901.1)/2.4(0.901) A vulnerability in the Admin portal of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to obtain confidential information for privileged accounts. | 6.5 |
| 2019-01-23 | CVE-2018-2026 | Information Exposure vulnerability in IBM Financial Transaction Manager 3.2.1.0 IBM Financial Transaction Manager 3.2.1 for Digital Payments could allow an authenticated user to obtain a directory listing of internal product files. | 4.3 |