Vulnerabilities > Information Exposure
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-04-20 | CVE-2016-4843 | Information Exposure vulnerability in Cybozu Mailwise Cybozu Mailwise before 5.4.0 allows remote attackers to obtain sensitive cookie information. | 6.5 |
| 2017-04-20 | CVE-2016-4842 | Information Exposure vulnerability in Cybozu Mailwise Cybozu Mailwise before 5.4.0 allows remote attackers to obtain information on when an email is read. | 4.3 |
| 2017-04-20 | CVE-2016-6341 | Information Exposure vulnerability in Ovirt oVirt Engine before 4.0.3 does not include DWH_DB_PASSWORD in the list of keys to hide in log files, which allows local users to obtain sensitive password information by reading engine log files. | 5.5 |
| 2017-04-20 | CVE-2016-6335 | Information Exposure vulnerability in Mediawiki MediaWiki before 1.23.15, 1.26.x before 1.26.4, and 1.27.x before 1.27.1 does not generate head items in the context of a given title, which allows remote attackers to obtain sensitive information via a parse action to api.php. | 7.5 |
| 2017-04-20 | CVE-2016-6332 | Information Exposure vulnerability in Mediawiki MediaWiki before 1.23.15, 1.26.x before 1.26.4, and 1.27.x before 1.27.1, when $wgBlockDisablesLogin is true, might allow remote attackers to obtain sensitive information by leveraging failure to terminate sessions when a user account is blocked. | 7.5 |
| 2017-04-20 | CVE-2016-5409 | Information Exposure vulnerability in Redhat Openshift 2.0 Red Hat OpenShift Enterprise 2 does not include the HTTPOnly flag in a Set-Cookie header for the GEARID cookie, which makes it easier for remote attackers to obtain potentially sensitive information via script access to the cookies. | 7.5 |
| 2017-04-20 | CVE-2017-5190 | Information Exposure vulnerability in Netiq Access Manager 4.1/4.2/4.3 NetIQ Access Manager 4.2 before SP3 HF1 and 4.3 before SP1 HF1, when configured as a SAML 2.0 Identity Server with Virtual Attributes, has a concurrency issue causing information leakage, related to a stale profile. | 3.1 |
| 2017-04-20 | CVE-2017-7282 | Information Exposure vulnerability in Unitrends Enterprise Backup 7.3.0/8.2.08/9.1 An issue was discovered in Unitrends Enterprise Backup before 9.1.1. | 5.5 |
| 2017-04-19 | CVE-2017-7978 | Information Exposure vulnerability in Samsung Mobile Samsung Android devices with L(5.0/5.1), M(6.0), and N(7.x) software allow attackers to obtain sensitive information by reading a world-readable log file after an unexpected reboot. | 7.5 |
| 2017-04-17 | CVE-2016-3037 | Information Exposure vulnerability in IBM Cognos Business Intelligence 10.1/10.2/10.2.2 IBM Cognos TM1 10.1 and 10.2 provides a service to return the victim's password with a valid session key. | 5.7 |