Vulnerabilities > Information Exposure
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-05-25 | CVE-2021-23937 | Information Exposure vulnerability in Apache Wicket A DNS proxy and possible amplification attack vulnerability in WebClientInfo of Apache Wicket allows an attacker to trigger arbitrary DNS lookups from the server when the X-Forwarded-For header is not properly sanitized. | 7.5 |
| 2021-05-25 | CVE-2021-32638 | Information Exposure vulnerability in Github Codeql Action Github's CodeQL action is provided to run CodeQL-based code scanning on non-GitHub CI/CD systems and requires a GitHub access token to connect to a GitHub repository. | 4.4 |
| 2021-05-24 | CVE-2021-32624 | Information Exposure vulnerability in Keystonejs Keystone-5 Keystone 5 is an open source CMS platform to build Node.js applications. | 5.3 |
| 2021-05-19 | CVE-2021-21733 | Information Exposure vulnerability in ZTE Zxcdn The management system of ZXCDN is impacted by the information leak vulnerability. | 4.9 |
| 2021-05-13 | CVE-2021-22135 | Information Exposure vulnerability in Elastic Elasticsearch Elasticsearch versions before 7.11.2 and 6.8.15 contain a document disclosure flaw was found in the Elasticsearch suggester and profile API when Document and Field Level Security are enabled. | 5.3 |
| 2021-05-13 | CVE-2021-20250 | Information Exposure vulnerability in Redhat products A flaw was found in wildfly. | 4.3 |
| 2021-05-13 | CVE-2021-20993 | Information Exposure vulnerability in Wago products In multiple managed switches by WAGO in different versions the activated directory listing provides an attacker with the index of the resources located inside the directory. | 5.3 |
| 2021-05-13 | CVE-2021-20331 | Information Exposure vulnerability in Mongodb C# Driver 2.11.0/2.12.0/2.12.1 Specific versions of the MongoDB C# Driver may erroneously publish events containing authentication-related data to a command listener configured by an application. | 4.9 |
| 2021-04-30 | CVE-2021-21537 | Information Exposure vulnerability in Dell Hybrid Client 1.0/1.1/1.1.01 Dell Hybrid Client versions prior to 1.5 contain an information exposure vulnerability. | 5.5 |
| 2021-04-30 | CVE-2021-21536 | Information Exposure vulnerability in Dell Hybrid Client 1.0/1.1/1.1.01 Dell Hybrid Client versions prior to 1.5 contain an information exposure vulnerability. | 5.5 |