Vulnerabilities > Information Exposure
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-10-11 | CVE-2022-35296 | Information Exposure vulnerability in SAP Businessobjects Business Intelligence 420/430 Under certain conditions, the application SAP BusinessObjects Business Intelligence Platform (Version Management System) exposes sensitive information to an actor over the network with high privileges that is not explicitly authorized to have access to that information, leading to a high impact on Confidentiality. | 4.9 |
| 2022-10-11 | CVE-2022-40177 | Information Exposure vulnerability in Siemens products A vulnerability has been identified in Desigo PXM30-1 (All versions < V02.20.126.11-41), Desigo PXM30.E (All versions < V02.20.126.11-41), Desigo PXM40-1 (All versions < V02.20.126.11-41), Desigo PXM40.E (All versions < V02.20.126.11-41), Desigo PXM50-1 (All versions < V02.20.126.11-41), Desigo PXM50.E (All versions < V02.20.126.11-41), PXG3.W100-1 (All versions < V02.20.126.11-37), PXG3.W100-2 (All versions < V02.20.126.11-41), PXG3.W200-1 (All versions < V02.20.126.11-37), PXG3.W200-2 (All versions < V02.20.126.11-41). | 5.7 |
| 2022-10-07 | CVE-2022-39848 | Information Exposure vulnerability in Google Android 10.0/11.0/12.0 Exposure of sensitive information in AT_Distributor prior to SMR Oct-2022 Release 1 allows local attacker to access SerialNo via log. | 3.3 |
| 2022-09-30 | CVE-2022-32540 | Information Exposure vulnerability in Bosch products Information Disclosure in Operator Client application in BVMS 10.1.1, 11.0 and 11.1.0 and VIDEOJET Decoder VJD-7513 versions 10.23 and 10.30 allows man-in-the-middle attacker to compromise confidential video stream. | 5.9 |
| 2022-09-28 | CVE-2022-3348 | Information Exposure vulnerability in Tooljet Just like in the previous report, an attacker could steal the account of different users. | 4.9 |
| 2022-09-23 | CVE-2022-32219 | Information Exposure vulnerability in Rocket.Chat An information disclosure vulnerability exists in Rocket.Chat <v4.7.5 which allowed the "users.list" REST endpoint gets a query parameter from JSON and runs Users.find(queryFromClientSide). | 4.3 |
| 2022-09-23 | CVE-2022-40194 | Information Exposure vulnerability in Cusrev Customer Reviews for Woocommerce Unauthenticated Sensitive Information Disclosure vulnerability in Customer Reviews for WooCommerce plugin <= 5.3.5 at WordPress | 7.5 |
| 2022-09-23 | CVE-2022-39230 | Information Exposure vulnerability in Amazon Fhir-Works-On-Aws-Authz-Smart 3.1.0/3.1.1/3.1.2 fhir-works-on-aws-authz-smart is an implementation of the authorization interface from the FHIR Works interface. | 6.5 |
| 2022-09-14 | CVE-2022-31143 | Information Exposure vulnerability in Glpi-Project Glpi GLPI stands for Gestionnaire Libre de Parc Informatique and is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. | 5.3 |
| 2022-09-12 | CVE-2022-31221 | Information Exposure vulnerability in Dell products Dell BIOS versions contain an Information Exposure vulnerability. | 2.3 |