Vulnerabilities > Information Exposure
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-11-13 | CVE-2017-13810 | Information Exposure vulnerability in Apple mac OS X An issue was discovered in certain Apple products. | 5.5 |
| 2017-11-13 | CVE-2017-13805 | Information Exposure vulnerability in Apple Iphone OS An issue was discovered in certain Apple products. | 2.4 |
| 2017-11-13 | CVE-2017-13801 | Information Exposure vulnerability in Apple mac OS X An issue was discovered in certain Apple products. | 3.3 |
| 2017-11-13 | CVE-2017-13782 | Information Exposure vulnerability in Apple mac OS X An issue was discovered in certain Apple products. | 5.5 |
| 2017-11-10 | CVE-2017-5201 | Information Exposure vulnerability in Netapp Clustered Data Ontap 8.1.4/9.0 NetApp Clustered Data ONTAP before 8.3.2P8 and 9.0 before P2 allow remote authenticated users to obtain sensitive cluster and tenant information via unspecified vectors, a different vulnerability than CVE-2016-3064. | 5.7 |
| 2017-11-10 | CVE-2017-16633 | Information Exposure vulnerability in Joomla Joomla! In Joomla! before 3.8.2, a logic bug in com_fields exposed read-only information about a site's custom fields to unauthorized users. | 4.3 |
| 2017-11-09 | CVE-2017-16673 | Information Exposure vulnerability in Datto Backup Agent 1.0.6.0 Datto Backup Agent 1.0.6.0 and earlier does not authenticate incoming connections. | 5.3 |
| 2017-11-08 | CVE-2017-11511 | Information Exposure vulnerability in Manageengine Servicedesk 9.3.9328 The ManageEngine ServiceDesk 9.3.9328 is vulnerable to arbitrary file downloads due to improper restrictions of the pathname used in the filepath parameter for the download-file URL. | 7.5 |
| 2017-11-08 | CVE-2017-15865 | Information Exposure vulnerability in Frrouting bgpd in FRRouting (FRR) before 2.0.2 and 3.x before 3.0.2, as used in Cumulus Linux before 3.4.3 and other products, allows remote attackers to obtain sensitive information via a malformed BGP UPDATE packet from a connected peer, which triggers transmission of up to a few thousand unintended bytes because of a mishandled attribute length, aka RN-690 (CM-18492). | 7.5 |
| 2017-11-08 | CVE-2017-16661 | Information Exposure vulnerability in Cacti 1.1.27 Cacti 1.1.27 allows remote authenticated administrators to read arbitrary files by placing the Log Path into a private directory, and then making a clog.php?filename= request, as demonstrated by filename=passwd (with a Log Path under /etc) to read /etc/passwd. | 4.9 |