Vulnerabilities > Information Exposure
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-04-13 | CVE-2022-22961 | Information Exposure vulnerability in VMWare products VMware Workspace ONE Access, Identity Manager and vRealize Automation contain an information disclosure vulnerability due to returning excess information. | 5.3 |
| 2022-04-12 | CVE-2021-28544 | Information Exposure vulnerability in multiple products Apache Subversion SVN authz protected copyfrom paths regression Subversion servers reveal 'copyfrom' paths that should be hidden according to configured path-based authorization (authz) rules. | 4.3 |
| 2022-04-12 | CVE-2022-27667 | Information Exposure vulnerability in SAP Businessobjects Business Intelligence Platform 430 Under certain conditions, SAP BusinessObjects Business Intelligence platform, Client Management Console (CMC) - version 430, allows an attacker to access information which would otherwise be restricted, leading to Information Disclosure. | 7.5 |
| 2022-04-12 | CVE-2022-27241 | Information Exposure vulnerability in Mendix A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23.31), Mendix Applications using Mendix 8 (All versions < V8.18.18), Mendix Applications using Mendix 9 (All versions < V9.11), Mendix Applications using Mendix 9 (V9.6) (All versions < V9.6.12). | 7.5 |
| 2022-04-06 | CVE-2021-43205 | Information Exposure vulnerability in Fortinet Forticlient An exposure of sensitive information to an unauthorized actor vulnerability [CWE-200] in FortiClient for Linux version 7.0.2 and below, 6.4.7 and below and 6.2.9 and below may allow an unauthenticated attacker to access the confighandler webserver via external binaries. | 5.3 |
| 2022-04-06 | CVE-2021-40375 | Information Exposure vulnerability in Apperta Openeyes 3.5.1 Apperta Foundation OpenEyes 3.5.1 allows remote attackers to view the sensitive information of patients without having the intended level of privilege. | 6.5 |
| 2022-04-01 | CVE-2019-14839 | Information Exposure vulnerability in Redhat products It was observed that while login into Business-central console, HTTP request discloses sensitive information like username and password when intercepted using some tool like burp suite etc. | 7.5 |
| 2022-04-01 | CVE-2022-23157 | Information Exposure vulnerability in Dell Wyse Device Agent 14.5.4.1 Wyse Device Agent version 14.6.1.4 and below contain a sensitive data exposure vulnerability. | 4.4 |
| 2022-04-01 | CVE-2022-23158 | Information Exposure vulnerability in Dell Wyse Device Agent 14.5.4.1 Wyse Device Agent version 14.6.1.4 and below contain a sensitive data exposure vulnerability. | 4.4 |
| 2022-03-24 | CVE-2022-24782 | Information Exposure vulnerability in Discourse Discourse is an open source discussion platform. | 4.3 |