Vulnerabilities > Information Exposure
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-04-18 | CVE-2014-10055 | Information Exposure vulnerability in Qualcomm SD 400 Firmware and SD 800 Firmware In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 400 and SD 800, there could be leakage of protected contents if HLOS doesn't request for security restoration for OCMEM xPU's. | 7.5 |
| 2018-04-18 | CVE-2014-10047 | Information Exposure vulnerability in Qualcomm SD 400 Firmware and SD 800 Firmware In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 400 and SD 800, when writing the Full Disk Encryption key to crypto engine, information leak could occur. | 7.5 |
| 2018-04-17 | CVE-2018-10189 | Information Exposure vulnerability in Mautic An issue was discovered in Mautic 1.x and 2.x before 2.13.0. | 7.5 |
| 2018-04-17 | CVE-2018-10178 | Information Exposure vulnerability in IAC Fromdoctopdf The FromDocToPDF extension before 13.611.13.2303 for Chrome allows remote attackers to discover visited web sites via vectors involving a mostVisitedSites command. | 5.3 |
| 2018-04-16 | CVE-2018-10106 | Information Exposure vulnerability in Dlink Dir-815 Firmware D-Link DIR-815 REV. | 9.8 |
| 2018-04-16 | CVE-2018-1000169 | Information Exposure vulnerability in Jenkins An exposure of sensitive information vulnerability exists in Jenkins 2.115 and older, LTS 2.107.1 and older, in CLICommand.java and ViewOptionHandler.java that allows unauthorized attackers to confirm the existence of agents or views with an attacker-specified name by sending a CLI command to Jenkins. | 5.3 |
| 2018-04-16 | CVE-2014-1686 | Information Exposure vulnerability in Mediawiki 1.18.0 MediaWiki 1.18.0 allows remote attackers to obtain the installation path via vectors related to thumbnail creation. | 5.3 |
| 2018-04-13 | CVE-2017-0361 | Information Exposure vulnerability in multiple products Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 contains an information disclosure flaw, where the api.log might contain passwords in plaintext. | 7.8 |
| 2018-04-13 | CVE-2018-10082 | Information Exposure vulnerability in Cmsmadesimple CMS Made Simple CMS Made Simple (CMSMS) through 2.2.7 allows physical path leakage via an invalid /index.php?page= value, a crafted URI starting with /index.php?mact=Search, or a direct request to /admin/header.php, /admin/footer.php, /lib/tasks/class.ClearCache.task.php, or /lib/tasks/class.CmsSecurityCheck.task.php. | 5.3 |
| 2018-04-12 | CVE-2015-0152 | Information Exposure vulnerability in Dlink Dir-815 Firmware D-Link DIR-815 devices with firmware before 2.07.B01 allow remote attackers to obtain sensitive information by leveraging cleartext storage of the administrative password. | 9.8 |