Vulnerabilities > Information Exposure
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-01-11 | CVE-2018-4217 | Information Exposure vulnerability in Apple mac OS X In macOS High Sierra before 10.13.5, a privacy issue in the handling of Open Directory records was addressed with improved indexing. | 7.5 |
| 2019-01-11 | CVE-2018-4186 | Information Exposure vulnerability in Apple Safari In Safari before 11.1, an information leakage issue existed in the handling of downloads in Safari Private Browsing. | 7.5 |
| 2019-01-11 | CVE-2018-4185 | Information Exposure vulnerability in Apple products In iOS before 11.3, tvOS before 11.3, watchOS before 4.3, and macOS before High Sierra 10.13.4, an information disclosure issue existed in the transition of program state. | 7.5 |
| 2019-01-11 | CVE-2018-4179 | Information Exposure vulnerability in Apple mac OS X In macOS High Sierra before 10.13.4, there was an issue with the handling of smartcard PINs. | 5.5 |
| 2019-01-11 | CVE-2016-4644 | Information Exposure vulnerability in Apple Iphone OS In iOS before 9.3.3, tvOS before 9.2.2, and OS X El Capitan before v10.11.6 and Security Update 2016-004, a downgrade issue existed with HTTP authentication credentials saved in Keychain. | 6.5 |
| 2019-01-11 | CVE-2016-4643 | Information Exposure vulnerability in Apple Iphone OS In iOS before 9.3.3, tvOS before 9.2.2, and OS X El Capitan before v10.11.6 and Security Update 2016-004, a validation issue existed in the parsing of 407 responses. | 6.5 |
| 2019-01-10 | CVE-2019-5884 | Information Exposure vulnerability in Std42 Elfinder php/elFinder.class.php in elFinder before 2.1.45 leaks information if PHP's curl extension is enabled and safe_mode or open_basedir is not set. | 5.9 |
| 2019-01-09 | CVE-2018-20681 | Information Exposure vulnerability in Mate-Desktop Mate-Screensaver mate-screensaver before 1.20.2 in MATE Desktop Environment allows physically proximate attackers to view screen content and possibly control applications. | 6.1 |
| 2019-01-09 | CVE-2018-16192 | Information Exposure vulnerability in NEC Aterm Wf1200Cr Firmware and Aterm Wg1200Cr Firmware Aterm WF1200CR and Aterm WG1200CR (Aterm WF1200CR firmware Ver1.1.1 and earlier, Aterm WG1200CR firmware Ver1.0.1 and earlier) allow an attacker on the same network segment to obtain information registered on the device via unspecified vectors. | 6.5 |
| 2019-01-09 | CVE-2018-1000410 | Information Exposure vulnerability in Jenkins An information exposure vulnerability exists in Jenkins 2.145 and earlier, LTS 2.138.1 and earlier, and the Stapler framework used by these releases, in core/src/main/java/org/kohsuke/stapler/RequestImpl.java, core/src/main/java/hudson/model/Descriptor.java that allows attackers with Overall/Administer permission or access to the local file system to obtain credentials entered by users if the form submission could not be successfully processed. | 7.8 |