Vulnerabilities > Information Exposure
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-08-29 | CVE-2016-2971 | Information Exposure vulnerability in IBM Sametime IBM Sametime Media Services 8.5.2 and 9.0 can disclose sensitive information in stack trace error logs that could aid an attacker in future attacks. | 5.3 |
| 2017-08-29 | CVE-2016-2969 | Information Exposure vulnerability in IBM Sametime IBM Sametime Meeting Server 8.5.2 and 9.0 may send replies that contain emails of people that should not be in these messages. | 4.3 |
| 2017-08-29 | CVE-2015-7255 | Information Exposure vulnerability in ZTE products ZTE OX-330P, ZXHN H108N, W300V1.0.0S_ZRD_TR1_D68, HG110, GAN9.8T101A-B, MF28G, ZXHN H108N use non-unique X.509 certificates and SSH host keys, which might allow remote attackers to obtain credentials or other sensitive information via a man-in-the-middle attack, passive decryption attack, or impersonating a legitimate device. | 7.5 |
| 2017-08-29 | CVE-2017-1110 | Information Exposure vulnerability in IBM Curam Social Program Management IBM Curam Social Program Management 6.0, 6.1, 6.2, and 7.0 contains an unspecified vulnerability that could allow an authenticated user to view the incidents of a higher privileged user. | 6.5 |
| 2017-08-29 | CVE-2016-2970 | Information Exposure vulnerability in IBM Sametime IBM Sametime 8.5 and 9.0 meetings server may provide detailed information in an error message that may provide details about the application to possible attackers. | 4.3 |
| 2017-08-28 | CVE-2017-9978 | Information Exposure vulnerability in Osnexus Quantastor 4.3.0 On the OSNEXUS QuantaStor v4 virtual appliance before 4.3.1, a flaw was found with the error message sent as a response for users that don't exist on the system. | 5.3 |
| 2017-08-28 | CVE-2015-1600 | Information Exposure vulnerability in Netatmo Indoor Module Firmware 100 Information disclosure vulnerability in Netatmo Indoor Module firmware 100 and earlier. | 7.5 |
| 2017-08-28 | CVE-2014-9483 | Information Exposure vulnerability in GNU Emacs 24.4 Emacs 24.4 allows remote attackers to bypass security restrictions. | 7.5 |
| 2017-08-25 | CVE-2017-12857 | Information Exposure vulnerability in Polycom Unified Communications Software Polycom SoundStation IP, VVX, and RealPresence Trio that are running software older than UCS 4.0.12, 5.4.5 rev AG, 5.4.7, 5.5.2, or 5.6.0 are affected by a vulnerability in their UCS web application. | 8.8 |
| 2017-08-25 | CVE-2014-7860 | Information Exposure vulnerability in D-Link Dns-320L Firmware and Dns-327L Firmware The web/web_file/fb_publish.php script in D-Link DNS-320L before 1.04b12 and DNS-327L before 1.03b04 Build0119 does not authenticate requests, which allows remote attackers to obtain arbitrary photos and publish them to an arbitrary Facebook profile via a target album_id and access_token. | 5.3 |