Vulnerabilities > Information Exposure
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-02-21 | CVE-2018-7273 | Information Exposure vulnerability in Linux Kernel In the Linux kernel through 4.15.4, the floppy driver reveals the addresses of kernel functions and global variables using printk calls within the function show_floppy in drivers/block/floppy.c. | 5.5 |
| 2018-02-21 | CVE-2018-7272 | Information Exposure vulnerability in Forgerock Access Management 5.0.0/5.1.0/5.1.1 The REST APIs in ForgeRock AM before 5.5.0 include SSOToken IDs as part of the URL, which allows attackers to obtain sensitive information by finding an ID value in a log file. | 6.5 |
| 2018-02-20 | CVE-2018-6487 | Information Exposure vulnerability in Microfocus Universal Cmdb Foundation Software Remote Disclosure of Information in Micro Focus Universal CMDB Foundation Software, version numbers 10.10, 10.11, 10.20, 10.21, 10.22, 10.30, 10.31, 4.10, 4.11. | 7.5 |
| 2018-02-20 | CVE-2018-5477 | Information Exposure vulnerability in ABB Netcadops An Information Exposure issue was discovered in ABB netCADOPS Web Application Version 3.4 and prior, netCADOPS Web Application Version 7.1 and prior, netCADOPS Web Application Version 7.2x and prior, netCADOPS Web Application Version 8.0 and prior, and netCADOPS Web Application Version 8.1 and prior. | 5.8 |
| 2018-02-20 | CVE-2017-18192 | Information Exposure vulnerability in Photo,Video Locker-Calculator Project Photo,Video Locker-Calculator 12.0/18.0 smart/calculator/gallerylock/CalculatorActivity.java in the "Photo,Video Locker-Calculator" application through 18 for Android allows attackers to access files via the backdoor 17621762 PIN. | 7.5 |
| 2018-02-20 | CVE-2015-9256 | Information Exposure vulnerability in Datto products Datto ALTO and SIRIS devices allow remote attackers to obtain sensitive information via access to device/VM restore mount points, because they do not have ACLs by default. | 5.3 |
| 2018-02-20 | CVE-2015-9255 | Information Exposure vulnerability in Datto products Datto ALTO and SIRIS devices allow remote attackers to obtain sensitive information about data, software versions, configuration, and virtual machines via a request to a Web Virtual Directory. | 5.3 |
| 2018-02-19 | CVE-2018-7251 | Information Exposure vulnerability in Anchorcms Anchor 0.12.3 An issue was discovered in config/error.php in Anchor 0.12.3. | 9.8 |
| 2018-02-19 | CVE-2018-6591 | Information Exposure vulnerability in Conversejs Converse.Js Converse.js and Inverse.js through 3.3 allow remote attackers to obtain sensitive information because it is too difficult to determine whether safe publication of private data was configured or even intended. | 5.3 |
| 2018-02-18 | CVE-2018-7210 | Information Exposure vulnerability in Idashboards An issue was discovered in iDashboards 9.6b. | 7.5 |