Vulnerabilities > Information Exposure
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-06-06 | CVE-2022-30586 | Information Exposure vulnerability in Gradle Gradle Enterprise through 2022.2.2 has Incorrect Access Control that leads to code execution. | 7.2 |
| 2022-06-03 | CVE-2021-42886 | Information Exposure vulnerability in Totolink Ex1200T Firmware 4.1.2Cu.5215 TOTOLINK EX1200T V4.1.2cu.5215 contains an information disclosure vulnerability where an attacker can get the apmib configuration file without authorization, and usernames and passwords can be found in the decoded file. | 7.5 |
| 2022-05-26 | CVE-2022-24414 | Information Exposure vulnerability in Dell Cloudlink Dell EMC CloudLink 7.1.3 and all earlier versions, Auth Token is exposed in GET requests. | 6.5 |
| 2022-05-24 | CVE-2022-29567 | Information Exposure vulnerability in Vaadin The default configuration of a TreeGrid component uses Object::toString as a key on the client-side and server communication in Vaadin 14.8.5 through 14.8.9, 22.0.6 through 22.0.14, 23.0.0.beta2 through 23.0.8 and 23.1.0.alpha1 through 23.1.0.alpha4, resulting in potential information disclosure of values that should not be available on the client-side. | 7.5 |
| 2022-05-17 | CVE-2020-4957 | Information Exposure vulnerability in IBM Security Identity Governance and Intelligence 5.2.6 IBM Security Identity Governance and Intelligence 5.2.6 could disclose sensitive information in URL parameters that could aid in future attacks against the system. | 5.3 |
| 2022-05-07 | CVE-2022-30334 | Information Exposure vulnerability in Brave Brave before 1.34, when a Private Window with Tor Connectivity is used, leaks .onion URLs in Referer and Origin headers. | 5.3 |
| 2022-05-05 | CVE-2021-39020 | Information Exposure vulnerability in IBM Guardium Data Encryption IBM Guardium Data Encryption (GDE) 4.0.0.7 and lower stores sensitive information in URL parameters. | 5.3 |
| 2022-05-04 | CVE-2022-20734 | Information Exposure vulnerability in Cisco Catalyst Sd-Wan Manager A vulnerability in Cisco SD-WAN vManage Software could allow an authenticated, local attacker to view sensitive information on an affected system. | 4.4 |
| 2022-05-04 | CVE-2022-25787 | Information Exposure vulnerability in Secomea products Information Exposure Through Query Strings in GET Request vulnerability in LMM API of Secomea GateManager allows system administrator to hijack connection. | 6.7 |
| 2022-04-27 | CVE-2022-22276 | Information Exposure vulnerability in Sonicwall products A vulnerability in SonicOS SNMP service resulting exposure of sensitive information to an unauthorized user. | 5.3 |