Vulnerabilities > Information Exposure
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-06-23 | CVE-2017-1193 | Information Exposure vulnerability in IBM Sterling B2B Integrator 5.2 IBM Sterling B2B Integrator Standard Edition 5.2 could allow user to obtain sensitive information using an HTTP GET request. | 6.5 |
| 2017-06-23 | CVE-2017-1131 | Information Exposure vulnerability in IBM Sterling B2B Integrator 5.2 IBM Sterling B2B Integrator Standard Edition 5.2 could allow an authenticated user to obtain sensitive information by using unsupported, specially crafted HTTP commands. | 6.5 |
| 2017-06-23 | CVE-2016-5893 | Information Exposure vulnerability in IBM Sterling B2B Integrator 5.2 IBM Sterling B2B Integrator Standard Edition 5.2 allows web pages to be stored locally which can be read by another user on the system. | 5.5 |
| 2017-06-22 | CVE-2016-9983 | Information Exposure vulnerability in IBM Sterling B2B Integrator 5.2 IBM Sterling B2B Integrator Standard Edition 5.2 could allow an authenticated user with special privileges to view files that they should not have access to. | 5.3 |
| 2017-06-22 | CVE-2016-9982 | Information Exposure vulnerability in IBM Sterling B2B Integrator 5.2 IBM Sterling B2B Integrator Standard Edition 5.2 could allow an authenticated user to obtain sensitive information such as account lists due to improper access control. | 6.5 |
| 2017-06-21 | CVE-2017-6045 | Information Exposure vulnerability in Trihedral Vtscada An Information Exposure issue was discovered in Trihedral VTScada Versions prior to 11.2.26. | 7.5 |
| 2017-06-20 | CVE-2017-3087 | Information Exposure vulnerability in Adobe Captivate Adobe Captivate versions 9 and earlier have an information disclosure vulnerability resulting from abuse of the quiz reporting feature in Captivate. | 7.5 |
| 2017-06-20 | CVE-2017-3743 | Information Exposure vulnerability in Lenovo products If multiple users are concurrently logged into a single system where one user is sending a command via the Lenovo ToolsCenter Advanced Settings Utility (ASU), UpdateXpress System Pack Installer (UXSPI) or Dynamic System Analysis (DSA) to a second machine, the other users may be able to see the user ID and clear text password that were used to access the second machine during the time the command is processing. | 7.5 |
| 2017-06-17 | CVE-2017-1000380 | Information Exposure vulnerability in Linux Kernel sound/core/timer.c in the Linux kernel before 4.11.5 is vulnerable to a data race in the ALSA /dev/snd/timer driver resulting in local users being able to read information belonging to other users, i.e., uninitialized memory contents may be disclosed when a read and an ioctl happen at the same time. | 5.5 |
| 2017-06-16 | CVE-2017-8450 | Information Exposure vulnerability in Elastic X-Pack 5.1.1 X-Pack 5.1.1 did not properly apply document and field level security to multi-search and multi-get requests so users without access to a document and/or field may have been able to access this information. | 7.5 |