Vulnerabilities > Information Exposure
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-04-10 | CVE-2015-1957 | Information Exposure vulnerability in IBM Websphere MQ IBM WebSphere MQ 7.5.x before 7.5.0.6 and 8.0.x before 8.0.0.3 allows remote authenticated users to obtain sensitive information via a man-in-the-middle attack, related to duplication of message data in cleartext outside the protected payload. | 5.3 |
| 2018-04-10 | CVE-2015-0172 | Information Exposure vulnerability in IBM Security Siteprotector System 3.0/3.1.0.0/3.1.1.0 IBM Security SiteProtector System 3.0, 3.1.0 and 3.1.1 allows remote attackers to bypass intended security restrictions and consequently execute unspecified commands and obtain sensitive information via unknown vectors. | 7.5 |
| 2018-04-10 | CVE-2014-2078 | Information Exposure vulnerability in Open-Xchange Appsuite 7.4.2 The backend in Open-Xchange (OX) AppSuite 7.4.2 before 7.4.2-rev9 allows remote attackers to obtain sensitive information about user email addresses in opportunistic circumstances by leveraging a failure in e-mail auto configuration for external accounts. | 5.3 |
| 2018-04-10 | CVE-2018-9922 | Information Exposure vulnerability in Icmsdev Icms An issue was discovered in idreamsoft iCMS through 7.0.7. | 5.3 |
| 2018-04-09 | CVE-2017-2826 | Information Exposure vulnerability in multiple products An information disclosure vulnerability exists in the iConfig proxy request of Zabbix server 2.4.X. | 3.7 |
| 2018-04-08 | CVE-2018-9852 | Information Exposure vulnerability in Gxlcms QY 1.0.0713 In Gxlcms QY v1.0.0713, Lib\Lib\Action\Home\HitsAction.class.php allows remote attackers to read data from a database by embedding a FROM clause in a query string within a Home-Hits request, as demonstrated hy sid=user,password%20from%20mysql.user%23. | 9.8 |
| 2018-04-07 | CVE-2018-9325 | Information Exposure vulnerability in Etherpad Etherpad 1.5.x and 1.6.x before 1.6.4 allows an attacker to export all the existing pads of an instance without knowledge of pad names. | 7.5 |
| 2018-04-06 | CVE-2014-2359 | Information Exposure vulnerability in Oleumtech AD1 Firmware and FT1 Firmware OleumTech Wireless Sensor Network devices allow remote attackers to obtain sensitive information about sensor nodes or spoof devices by reading cleartext protocol data. | 5.9 |
| 2018-04-06 | CVE-2018-7506 | Information Exposure vulnerability in Moxa Mxview The private key of the web server in Moxa MXview versions 2.8 and prior is able to be read and accessed via an HTTP GET request, which may allow a remote attacker to decrypt encrypted information. | 7.5 |
| 2018-04-05 | CVE-2017-0748 | Information Exposure vulnerability in Google Android An information disclosure vulnerability in the Qualcomm audio driver. | 5.3 |