Vulnerabilities > Information Exposure
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-09-23 | CVE-2018-17404 | Information Exposure vulnerability in SBI Buddy 1.41/1.42 The SBIbuddy (aka com.sbi.erupee) application 1.41 and 1.42 for Android might allow an attacker to sniff private information such as mobile number, PAN number (from a government-issued ID), and date of birth. | 5.3 |
| 2018-09-23 | CVE-2018-17402 | Information Exposure vulnerability in Phonepe 3.0.6/3.3.26 The PhonePe wallet (aka com.PhonePe.app) application 3.0.6 through 3.3.26 for Android might allow attackers to discover the Credit/Debit card number, expiration date, and CVV number. | 5.3 |
| 2018-09-21 | CVE-2018-14731 | Information Exposure vulnerability in Parceljs Parcel An issue was discovered in HMRServer.js in Parcel parcel-bundler. | 7.5 |
| 2018-09-21 | CVE-2018-14730 | Information Exposure vulnerability in Browserify-Hot Module Replacement Project Browserify-Hot Module Replacement An issue was discovered in Browserify-HMR. | 7.5 |
| 2018-09-21 | CVE-2013-7203 | Information Exposure vulnerability in Gitolite gitolite before commit fa06a34 might allow local users to read arbitrary files in repositories via vectors related to the user umask when running gitolite setup. | 5.5 |
| 2018-09-21 | CVE-2018-8023 | Information Exposure vulnerability in Apache Mesos Apache Mesos can be configured to require authentication to call the Executor HTTP API using JSON Web Token (JWT). | 5.9 |
| 2018-09-21 | CVE-2018-1685 | Information Exposure vulnerability in IBM DB2 IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 contains a vulnerability in db2cacpy that could allow a local user to read any file on the system. | 5.5 |
| 2018-09-20 | CVE-2018-1800 | Information Exposure vulnerability in IBM Sterling B2B Integrator IBM Sterling B2B Integrator Standard Edition 5.2.6.0 and 6.2.6.1 could allow a local user to obtain highly sensitive information during a short time period when installation is occurring. | 4.7 |
| 2018-09-19 | CVE-2018-3831 | Information Exposure vulnerability in Elastic Elasticsearch Elasticsearch Alerting and Monitoring in versions before 6.4.1 or 5.6.12 have an information disclosure issue when secrets are configured via the API. | 8.8 |
| 2018-09-18 | CVE-2018-16671 | Information Exposure vulnerability in Circontrol Circarlife Scada An issue was discovered in CIRCONTROL CirCarLife before 4.3. | 5.3 |