Vulnerabilities > Information Exposure
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-04-03 | CVE-2017-13839 | Information Exposure vulnerability in Apple mac OS X 10.13.0 An issue was discovered in certain Apple products. | 5.5 |
| 2018-04-01 | CVE-2018-6849 | Information Exposure vulnerability in Duckduckgo 4.2.0 In the WebRTC component in DuckDuckGo 4.2.0, after visiting a web site that attempts to gather complete client information (such as https://ip.voidsec.com), the browser can disclose a private IP address in a STUN request. | 4.3 |
| 2018-03-30 | CVE-2018-1234 | Information Exposure vulnerability in RSA Authentication Agent for web 8.0/8.0.1 RSA Authentication Agent version 8.0.1 and earlier for Web for IIS is affected by a problem where access control list (ACL) permissions on a Windows Named Pipe were not sufficient to prevent access by unauthorized users. | 5.5 |
| 2018-03-30 | CVE-2017-17769 | Information Exposure vulnerability in Google Android Information leakage in Android for MSM, Firefox OS for MSM, and QRD Android can occur in the audio driver. | 5.5 |
| 2018-03-30 | CVE-2017-15852 | Information Exposure vulnerability in Google Android Information leak of the ISPIF base address in Android for MSM, Firefox OS for MSM, and QRD Android can occur in the camera driver. | 7.8 |
| 2018-03-30 | CVE-2017-14891 | Information Exposure vulnerability in Google Android In the KGSL driver function _gpuobj_map_useraddr() in Android for MSM, Firefox OS for MSM, and QRD Android before 2017-10-12, the contents of the stack can get leaked due to an uninitialized variable. | 5.3 |
| 2018-03-30 | CVE-2017-14875 | Information Exposure vulnerability in Google Android In the handler for the ioctl command VIDIOC_MSM_ISP_DUAL_HW_LPM_MODE in Android for MSM, Firefox OS for MSM, and QRD Android before 2017-05-23, a heap overread vulnerability exists. | 7.5 |
| 2018-03-30 | CVE-2017-11087 | Information Exposure vulnerability in Google Android libOmxVenc in Android for MSM, Firefox OS for MSM, and QRD Android copies the output buffer to an application with the "filled length", which is larger than the output buffer's actual size, leading to an information disclosure problem in the context of mediaserver. | 7.5 |
| 2018-03-30 | CVE-2018-3817 | Information Exposure vulnerability in Elastic Logstash When logging warnings regarding deprecated settings, Logstash before 5.6.6 and 6.x before 6.1.2 could inadvertently log sensitive information. | 6.5 |
| 2018-03-30 | CVE-2017-1765 | Information Exposure vulnerability in IBM Business Process Manager IBM Business Process Manager 8.6 could allow an authenticated user with special privileges to reveal sensitive information about the application server. | 4.3 |