Vulnerabilities > Information Exposure
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-01-26 | CVE-2018-6015 | Information Exposure vulnerability in Icegram Email Subscribers & Newsletters An issue was discovered in the "Email Subscribers & Newsletters" plugin before 3.4.8 for WordPress. | 7.5 |
| 2018-01-26 | CVE-2018-5750 | Information Exposure vulnerability in multiple products The acpi_smbus_hc_add function in drivers/acpi/sbshc.c in the Linux kernel through 4.14.15 allows local users to obtain sensitive address information by reading dmesg data from an SBS HC printk call. | 5.5 |
| 2018-01-26 | CVE-2017-1000399 | Information Exposure vulnerability in Jenkins The Jenkins 2.73.1 and earlier, 2.83 and earlier remote API at /queue/item/(ID)/api showed information about tasks in the queue (typically builds waiting to start). | 4.3 |
| 2018-01-26 | CVE-2017-1000398 | Information Exposure vulnerability in Jenkins The remote API in Jenkins 2.73.1 and earlier, 2.83 and earlier at /computer/(agent-name)/api showed information about tasks (typically builds) currently running on that agent. | 4.3 |
| 2018-01-26 | CVE-2017-1000395 | Information Exposure vulnerability in Jenkins Jenkins 2.73.1 and earlier, 2.83 and earlier provides information about Jenkins user accounts which is generally available to anyone with Overall/Read permissions via the /user/(username)/api remote API. | 4.3 |
| 2018-01-25 | CVE-2017-1000505 | Information Exposure vulnerability in Jenkins Script Security In Jenkins Script Security Plugin version 1.36 and earlier, users with the ability to configure sandboxed Groovy scripts are able to use a type coercion feature in Groovy to create new `File` objects from strings. | 6.5 |
| 2018-01-25 | CVE-2018-4835 | Information Exposure vulnerability in Siemens Telecontrol Server Basic 3.0 A vulnerability has been identified in TeleControl Server Basic < V3.1. | 5.3 |
| 2018-01-24 | CVE-2018-5319 | Information Exposure vulnerability in Ravpower Filehub Firmware 2.000.056 RAVPower FileHub 2.000.056 allows remote users to steal sensitive information via a crafted HTTP request. | 7.5 |
| 2018-01-23 | CVE-2017-2744 | Information Exposure vulnerability in HP Support Assistant The vulnerability allows attacker to extract binaries into protected file system locations in HP Support Assistant before 12.7.26.1. | 5.5 |
| 2018-01-23 | CVE-2017-16609 | Information Exposure vulnerability in Netgain-Systems Enterprise Manager 7.2.699/7.2.730 This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Netgain Enterprise Manager. | 7.5 |