Vulnerabilities > Information Exposure
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-07-06 | CVE-2016-6539 | Information Exposure vulnerability in Thetrackr Trackr Firmware The Trackr device ID is constructed of a manufacturer identifier of four zeroes followed by the BLE MAC address in reverse. | 3.5 |
| 2018-07-06 | CVE-2016-6538 | Information Exposure vulnerability in Thetrackr Trackr Bravo Firmware The TrackR Bravo mobile app stores the account password used to authenticate to the cloud API in cleartext in the cache.db file. | 8.8 |
| 2018-07-06 | CVE-2017-15851 | Information Exposure vulnerability in Google Android Lack of copy_from_user and information leak in function "msm_ois_subdev_do_ioctl, file msm_ois.c can lead to a camera crash in all Android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the Linux kernel | 7.8 |
| 2018-07-06 | CVE-2018-5892 | Information Exposure vulnerability in Qualcomm products The Touch Pal application can collect user behavior data without awareness by the user in Snapdragon Mobile and Snapdragon Wear. | 7.5 |
| 2018-07-06 | CVE-2017-1559 | Information Exposure vulnerability in IBM products Multiple IBM Rational products could disclose sensitive information by an attacker that intercepts vulnerable requests. | 4.3 |
| 2018-07-06 | CVE-2017-1509 | Information Exposure vulnerability in IBM products IBM Jazz Foundation products could allow an authenticated user to obtain sensitive information from a stack trace that could be used to aid future attacks. | 4.3 |
| 2018-07-06 | CVE-2017-1488 | Information Exposure vulnerability in IBM products An undisclosed vulnerability in Jazz common products exists with potential for information disclosure. | 5.3 |
| 2018-07-06 | CVE-2017-1239 | Information Exposure vulnerability in IBM products IBM Quality Manager (RQM) 5.0.x and 6.0 through 6.0.5 could reveal sensitive information in HTTP 500 Internal Server Error responses. | 5.3 |
| 2018-07-05 | CVE-2018-9998 | Information Exposure vulnerability in Open-Xchange Appsuite Open-Xchange OX App Suite before 7.6.3-rev37, 7.8.x before 7.8.2-rev40, 7.8.3 before 7.8.3-rev48, and 7.8.4 before 7.8.4-rev28 include folder names in API error responses, which allows remote attackers to obtain sensitive information via the folder parameter in an "all" action to api/tasks. | 6.5 |
| 2018-07-05 | CVE-2018-12021 | Information Exposure vulnerability in Sylabs Singularity Singularity 2.3.0 through 2.5.1 is affected by an incorrect access control on systems supporting overlay file system. | 6.5 |