Vulnerabilities > Information Exposure
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-02-15 | CVE-2016-6060 | Information Exposure vulnerability in IBM products An undisclosed vulnerability in IBM Rational DOORS Next Generation 4.0, 5.0, and 6.0 could allow a JazzGuest user to see project names. | 4.3 |
| 2017-02-14 | CVE-2017-5967 | Information Exposure vulnerability in Linux Kernel The time subsystem in the Linux kernel through 4.9.9, when CONFIG_TIMER_STATS is enabled, allows local users to discover real PID values (as distinguished from PID values inside a PID namespace) by reading the /proc/timer_list file, related to the print_timer function in kernel/time/timer_list.c and the __timer_stats_timer_set_start_info function in kernel/time/timer.c. | 4.0 |
| 2017-02-13 | CVE-2017-5166 | Information Exposure vulnerability in Binom3 Universal Multifunctional Electric Power Quality Meter Firmware An issue was discovered in BINOM3 Universal Multifunctional Electric Power Quality Meter. | 9.8 |
| 2017-02-13 | CVE-2017-5146 | Information Exposure vulnerability in Carlosgavazzi Vmu-C EM Firmware and Vmu-C PV Firmware An issue was discovered in Carlo Gavazzi VMU-C EM prior to firmware Version A11_U05, and VMU-C PV prior to firmware Version A17. | 7.5 |
| 2017-02-13 | CVE-2016-9349 | Information Exposure vulnerability in Advantech Susiaccess 3.0 An issue was discovered in Advantech SUISAccess Server Version 3.0 and prior. | 7.5 |
| 2017-02-13 | CVE-2016-5813 | Information Exposure vulnerability in Visonic Powerlink2 Firmware An issue was discovered in Visonic PowerLink2, all versions prior to October 2016 firmware release. | 5.3 |
| 2017-02-13 | CVE-2016-5786 | Information Exposure vulnerability in Omnimetrix Omniview 1.2 An issue was discovered in OmniMetrix OmniView, Version 1.2. | 7.5 |
| 2017-02-13 | CVE-2016-3995 | Information Exposure vulnerability in Cryptopp Crypto++ The timing attack protection in Rijndael::Enc::ProcessAndXorBlock and Rijndael::Dec::ProcessAndXorBlock in Crypto++ (aka cryptopp) before 5.6.4 may be optimized out by the compiler, which allows attackers to conduct timing attacks. | 7.5 |
| 2017-02-13 | CVE-2016-6210 | Information Exposure vulnerability in Openbsd Openssh sshd in OpenSSH before 7.3, when SHA256 or SHA512 are used for user password hashing, uses BLOWFISH hashing on a static password when the username does not exist, which allows remote attackers to enumerate users by leveraging the timing difference between responses when a large password is provided. | 5.9 |
| 2017-02-13 | CVE-2016-8495 | Information Exposure vulnerability in Fortinet Fortimanager Firmware An improper certificate validation vulnerability in Fortinet FortiManager 5.0.6 through 5.2.7 and 5.4.0 through 5.4.1 allows remote attacker to spoof a trusted entity by using a man-in-the-middle (MITM) attack via the Fortisandbox devices probing feature. | 7.4 |