Vulnerabilities > Information Exposure
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-06-18 | CVE-2018-12522 | Information Exposure vulnerability in Perfsonar Monitoring and Debugging Dashboard 2.0.2 An issue was discovered in perfSONAR Monitoring and Debugging Dashboard (MaDDash) 2.0.2. | 5.3 |
| 2018-06-17 | CVE-2018-12337 | Information Exposure vulnerability in Ecos Secure Boot Stick Firmware 5.6.5 Reliance on Security Through Obscurity vulnerability in ECOS Secure Boot Stick (aka SBS) 5.6.5 allows an attacker to partially extract confidential configurations via user-space emulation. | 4.6 |
| 2018-06-17 | CVE-2018-12336 | Information Exposure vulnerability in Ecos Secure Boot Stick Firmware 5.6.5 Undocumented Factory Backdoor in ECOS Secure Boot Stick (aka SBS) 5.6.5 allows the vendor to extract confidential information via remote root SSH access. | 9.8 |
| 2018-06-17 | CVE-2018-12329 | Information Exposure vulnerability in Ecos Secure Boot Stick Firmware 5.6.5 Protection Mechanism Failure in ECOS Secure Boot Stick (aka SBS) 5.6.5 allows a local attacker to duplicate an authentication factor via cloning. | 5.9 |
| 2018-06-16 | CVE-2018-5751 | Information Exposure vulnerability in Open-Xchange Appsuite The backend component in Open-Xchange OX App Suite before 7.6.3-rev36, 7.8.x before 7.8.2-rev39, 7.8.3 before 7.8.3-rev44, and 7.8.4 before 7.8.4-rev22 allows remote authenticated users to obtain sensitive information about external guest users via vectors related to the "groups" and "users" APIs. | 6.5 |
| 2018-06-15 | CVE-2018-12481 | Information Exposure vulnerability in the Olive Tree FTP Server Project the Olive Tree FTP Server 1.32 The Olive Tree Ftp Server application 1.32 for Android has a "Sensitive Data on the Clipboard" vulnerability, as demonstrated by reading the "User password" field with the Drozer post.capture.clipboard module. | 9.8 |
| 2018-06-15 | CVE-2018-6672 | Information Exposure vulnerability in Mcafee Epolicy Orchestrator Information disclosure vulnerability in McAfee ePolicy Orchestrator (ePO) 5.3.0 through 5.3.3 and 5.9.0 through 5.9.1 allows authenticated users to view sensitive information in plain text format via unspecified vectors. | 6.5 |
| 2018-06-15 | CVE-2018-12440 | Information Exposure vulnerability in Google Boringssl 20180614 BoringSSL through 2018-06-14 allows a memory-cache side-channel attack on DSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. | 4.7 |
| 2018-06-15 | CVE-2018-12439 | Information Exposure vulnerability in Matrixssl MatrixSSL through 3.9.5 Open allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. | 4.7 |
| 2018-06-15 | CVE-2018-12437 | Information Exposure vulnerability in multiple products LibTomCrypt through 1.18.1 allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. | 4.9 |