Vulnerabilities > Information Exposure
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-11-15 | CVE-2017-11768 | Information Exposure vulnerability in Microsoft Windows Media Player Windows Media Player in Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016, and Windows Server, version 1709 allows remote attackers to test for the presence of files on disk via a specially crafted application. | 2.5 |
| 2017-11-14 | CVE-2017-10267 | Information Exposure vulnerability in Oracle Tuxedo Vulnerability in the Oracle Tuxedo component of Oracle Fusion Middleware (subcomponent: Core). | 7.5 |
| 2017-11-14 | CVE-2017-10266 | Information Exposure vulnerability in Oracle Tuxedo Vulnerability in the Oracle Tuxedo component of Oracle Fusion Middleware (subcomponent: Core). | 5.3 |
| 2017-11-14 | CVE-2017-9369 | Information Exposure vulnerability in Blackberry QNX Software Development Platform 6.5.0/6.6.0 In BlackBerry QNX Software Development Platform (SDP) 6.6.0 and 6.5.0 SP1 and earlier, an information disclosure vulnerability in the default configuration of the QNX SDP could allow an attacker to gain information relating to memory layout of higher privileged processes by manipulating environment variables that influence the loader. | 4.9 |
| 2017-11-14 | CVE-2017-3892 | Information Exposure vulnerability in Blackberry QNX Software Development Platform 6.6.0 In BlackBerry QNX Software Development Platform (SDP) 6.6.0, an information disclosure vulnerability in the default configuration of the QNX SDP could allow an attacker to gain information relating to memory layout that could be used in a blended attack by executing commands targeting procfs resources. | 7.5 |
| 2017-11-14 | CVE-2017-6275 | Information Exposure vulnerability in Google Android An information disclosure vulnerability exists in the Thermal Driver, where a missing bounds checking in the thermal driver could allow a read from an arbitrary kernel address. | 7.5 |
| 2017-11-13 | CVE-2017-1229 | Information Exposure vulnerability in IBM Bigfix Platform 9.2/9.5 IBM Tivoli Endpoint Manager (IBM BigFix 9.2 and 9.5) could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. | 5.9 |
| 2017-11-13 | CVE-2017-16804 | Information Exposure vulnerability in multiple products In Redmine before 3.2.7 and 3.3.x before 3.3.4, the reminders function in app/models/mailer.rb does not check whether an issue is visible, which allows remote authenticated users to obtain sensitive information by reading e-mail reminder messages. | 4.3 |
| 2017-11-13 | CVE-2017-7113 | Information Exposure vulnerability in Apple Iphone OS An issue was discovered in certain Apple products. | 5.5 |
| 2017-11-13 | CVE-2017-13852 | Information Exposure vulnerability in Apple products An issue was discovered in certain Apple products. | 3.3 |