Vulnerabilities > Information Exposure
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-07-09 | CVE-2018-1548 | Information Exposure vulnerability in IBM API Connect IBM API Connect 2018.1.0.0, 2018.2.1, 2018.2.2, 2018.2.3, and 2018.2.4 contains a vulnerability that could allow an authenticated user to obtain sensitive information. | 4.3 |
| 2018-07-09 | CVE-2018-1000402 | Information Exposure vulnerability in Jenkins AWS Codedeploy Jenkins project Jenkins AWS CodeDeploy Plugin version 1.19 and earlier contains a File and Directory Information Exposure vulnerability in AWSCodeDeployPublisher.java that can result in Disclosure of environment variables. | 4.3 |
| 2018-07-06 | CVE-2016-6540 | Information Exposure vulnerability in Thetrackr Trackr Bravo Firmware Unauthenticated access to the cloud-based service maintained by TrackR Bravo is allowed for querying or sending GPS data for any Trackr device by using the tracker ID number which can be discovered as described in CVE-2016-6539. | 6.5 |
| 2018-07-06 | CVE-2016-6539 | Information Exposure vulnerability in Thetrackr Trackr Firmware The Trackr device ID is constructed of a manufacturer identifier of four zeroes followed by the BLE MAC address in reverse. | 3.5 |
| 2018-07-06 | CVE-2016-6538 | Information Exposure vulnerability in Thetrackr Trackr Bravo Firmware The TrackR Bravo mobile app stores the account password used to authenticate to the cloud API in cleartext in the cache.db file. | 8.8 |
| 2018-07-06 | CVE-2017-15851 | Information Exposure vulnerability in Google Android Lack of copy_from_user and information leak in function "msm_ois_subdev_do_ioctl, file msm_ois.c can lead to a camera crash in all Android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the Linux kernel | 7.8 |
| 2018-07-06 | CVE-2018-5892 | Information Exposure vulnerability in Qualcomm products The Touch Pal application can collect user behavior data without awareness by the user in Snapdragon Mobile and Snapdragon Wear. | 7.5 |
| 2018-07-06 | CVE-2017-1559 | Information Exposure vulnerability in IBM products Multiple IBM Rational products could disclose sensitive information by an attacker that intercepts vulnerable requests. | 4.3 |
| 2018-07-06 | CVE-2017-1509 | Information Exposure vulnerability in IBM products IBM Jazz Foundation products could allow an authenticated user to obtain sensitive information from a stack trace that could be used to aid future attacks. | 4.3 |
| 2018-07-06 | CVE-2017-1488 | Information Exposure vulnerability in IBM products An undisclosed vulnerability in Jazz common products exists with potential for information disclosure. | 5.3 |