Vulnerabilities > Information Exposure
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-08-08 | CVE-2017-8516 | Information Exposure vulnerability in Microsoft SQL Server 2012/2014/2016 Microsoft SQL Server Analysis Services in Microsoft SQL Server 2012, Microsoft SQL Server 2014, and Microsoft SQL Server 2016 allows an information disclosure vulnerability when it improperly enforces permissions, aka "Microsoft SQL Server Analysis Services Information Disclosure Vulnerability". | 7.5 |
| 2017-08-08 | CVE-2011-4343 | Information Exposure vulnerability in Apache Myfaces Information disclosure vulnerability in Apache MyFaces Core 2.0.1 through 2.0.10 and 2.1.0 through 2.1.4 allows remote attackers to inject EL expressions via crafted parameters. | 7.5 |
| 2017-08-08 | CVE-2010-3845 | Information Exposure vulnerability in Apache Authenhook Project Apache Authenhook 2.0004 libapache-authenhook-perl 2.00-04 stores usernames and passwords in plaintext in the vhost error log. | 9.8 |
| 2017-08-08 | CVE-2017-11155 | Information Exposure vulnerability in Synology Photo Station An information exposure vulnerability in index.php in Synology Photo Station before 6.7.3-3432 and 6.3-2967 allows remote attackers to obtain sensitive system information via unspecified vectors. | 7.5 |
| 2017-08-08 | CVE-2017-10093 | Information Exposure vulnerability in Oracle Agile Product Lifecycle Management Framework 9.3.5/9.3.6 Vulnerability in the Oracle Agile PLM component of Oracle Supply Chain Products Suite (subcomponent: Security). | 5.3 |
| 2017-08-08 | CVE-2017-10084 | Information Exposure vulnerability in Oracle Flexcube Universal Banking Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applications (subcomponent: Report Generator). | 6.5 |
| 2017-08-07 | CVE-2016-6220 | Information Exposure vulnerability in Trendmicro Control Manager 6.0 Information Disclosure vulnerability in the Dashboard and Error Pages in Trend Micro Control Manager SP3 6.0. | 7.5 |
| 2017-08-07 | CVE-2014-3462 | Information Exposure vulnerability in multiple products The ".encfs6.xml" configuration file in encfs before 1.7.5 allows remote attackers to access sensitive data by setting "blockMACBytes" to 0 and adding 8 to "blockMACRandBytes". | 7.5 |
| 2017-08-07 | CVE-2017-6752 | Information Exposure vulnerability in Cisco Adaptive Security Appliance Software 9.3.3/9.6.2 A vulnerability in the web interface of the Cisco Adaptive Security Appliance (ASA) 9.3(3) and 9.6(2) could allow an unauthenticated, remote attacker to determine valid usernames. | 7.5 |
| 2017-08-05 | CVE-2017-9862 | Information Exposure vulnerability in SMA Sunny Explorer An issue was discovered in SMA Solar Technology products. | 7.5 |