Vulnerabilities > Information Exposure

DATE CVE VULNERABILITY TITLE RISK
2017-05-17 CVE-2017-4017 Information Exposure vulnerability in Mcafee Network Data Loss Prevention 9.3.0
User Name Disclosure in the server in McAfee Network Data Loss Prevention (NDLP) 9.3.x allows remote attackers to view user information via the appliance web interface.
network
low complexity
mcafee CWE-200
5.3
2017-05-17 CVE-2017-4016 Information Exposure vulnerability in Mcafee Network Data Loss Prevention 9.3.0
Web Server method disclosure in the server in McAfee Network Data Loss Prevention (NDLP) 9.3.x allows remote attackers to exploit and find another hole via HTTP response header.
network
low complexity
mcafee CWE-200
5.3
2017-05-17 CVE-2017-4013 Information Exposure vulnerability in Mcafee Network Data Loss Prevention 9.3.0
Banner Disclosure in the server in McAfee Network Data Loss Prevention (NDLP) 9.3.x allows remote attackers to obtain product information via HTTP response header.
network
low complexity
mcafee CWE-200
5.3
2017-05-16 CVE-2017-7488 Information Exposure vulnerability in Authconfig Project Authconfig 6.2.8
Authconfig version 6.2.8 is vulnerable to an Information exposure while using SSSD to authenticate against remote server resulting in the leak of information about existing usernames.
network
low complexity
authconfig-project CWE-200
4.3
2017-05-16 CVE-2017-6651 Information Exposure vulnerability in Cisco Webex Meetings Server
A vulnerability in Cisco WebEx Meetings Server could allow unauthenticated, remote attackers to gain information that could allow them to access scheduled customer meetings.
network
low complexity
cisco CWE-200
7.5
2017-05-16 CVE-2015-9001 Information Exposure vulnerability in Google Android
In TrustZone an information exposure vulnerability can potentially occur in all Android releases from CAF using the Linux kernel.
local
low complexity
google CWE-200
5.5
2017-05-15 CVE-2016-9735 Information Exposure vulnerability in IBM products
IBM Jazz Foundation could allow an authenticated user to obtain sensitive information from stack traces.
network
low complexity
ibm CWE-200
4.3
2017-05-15 CVE-2017-7495 Information Exposure vulnerability in Linux Kernel
fs/ext4/inode.c in the Linux kernel before 4.6.2, when ext4 data=ordered mode is used, mishandles a needs-flushing-before-commit list, which allows local users to obtain sensitive information from other users' files in opportunistic circumstances by waiting for a hardware reset, creating a new file, making write system calls, and reading this file.
local
low complexity
linux CWE-200
5.5
2017-05-15 CVE-2017-5655 Information Exposure vulnerability in Apache Ambari
In Ambari 2.2.2 through 2.4.2 and Ambari 2.5.0, sensitive data may be stored on disk in temporary files on the Ambari Server host.
network
low complexity
apache CWE-200
6.5
2017-05-15 CVE-2016-8741 Information Exposure vulnerability in Apache Qpid Broker-J
The Apache Qpid Broker for Java can be configured to use different so called AuthenticationProviders to handle user authentication.
network
low complexity
apache CWE-200
7.5