Vulnerabilities > Information Exposure
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-06-05 | CVE-2018-1000187 | Information Exposure vulnerability in Jenkins Kubernetes A exposure of sensitive information vulnerability exists in Jenkins Kubernetes Plugin 1.7.0 and older in ContainerExecDecorator.java that results in sensitive variables such as passwords being written to logs. | 6.5 |
| 2018-06-05 | CVE-2018-1000186 | Information Exposure vulnerability in Jenkins Github Pull Request Builder A exposure of sensitive information vulnerability exists in Jenkins GitHub Pull Request Builder Plugin 1.41.0 and older in GhprbGitHubAuth.java that allows attackers with Overall/Read access to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins. | 6.5 |
| 2018-06-05 | CVE-2018-1000183 | Information Exposure vulnerability in Jenkins Github A exposure of sensitive information vulnerability exists in Jenkins GitHub Plugin 1.29.0 and older in GitHubServerConfig.java that allows attackers with Overall/Read access to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins. | 6.5 |
| 2018-06-05 | CVE-2018-1332 | Information Exposure vulnerability in Apache Storm Apache Storm version 1.0.6 and earlier, 1.2.1 and earlier, and version 1.1.2 and earlier expose a vulnerability that could allow a user to impersonate another user when communicating with some Storm Daemons. | 6.5 |
| 2018-06-05 | CVE-2018-1000181 | Information Exposure vulnerability in IBM Kitura Kitura 2.3.0 and earlier have an unintended read access to unauthorised files and folders that can be exploited by a crafted URL resulting in information disclosure. | 7.5 |
| 2018-06-05 | CVE-2018-11554 | Information Exposure vulnerability in Yzmcms The forgotten-password feature in index.php/member/reset/reset_email.html in YzmCMS v3.2 through v3.7 has a Response Discrepancy Information Exposure issue and an unexpectedly long lifetime for a verification code, which makes it easier for remote attackers to hijack accounts via a brute-force approach. | 9.8 |
| 2018-06-04 | CVE-2017-12092 | Information Exposure vulnerability in Rockwellautomation Micrologix 1400 B Firmware An exploitable file write vulnerability exists in the memory module functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. | 7.5 |
| 2018-06-04 | CVE-2017-16055 | Information Exposure vulnerability in Sqlserver Project Sqlserver `sqlserver` was a malicious module published with the intent to hijack environment variables. | 7.5 |
| 2018-06-04 | CVE-2017-16054 | Information Exposure vulnerability in Nodefabric Project Nodefabric `nodefabric` was a malicious module published with the intent to hijack environment variables. | 7.5 |
| 2018-06-04 | CVE-2017-16053 | Information Exposure vulnerability in Fabric-Js Project Fabric-Js `fabric-js` was a malicious module published with the intent to hijack environment variables. | 7.5 |