Vulnerabilities > Information Exposure
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-10-07 | CVE-2021-42089 | Information Exposure vulnerability in Zammad An issue was discovered in Zammad before 4.1.1. | 7.5 |
| 2021-10-06 | CVE-2021-0644 | Information Exposure vulnerability in Google Android 10.0/11.0 In conditionallyRemoveIdentifiers of SubscriptionController.java, there is a possible way to retrieve a trackable identifier due to a missing permission check. | 5.5 |
| 2021-10-05 | CVE-2021-41124 | Information Exposure vulnerability in Zyte Scrapy-Splash Scrapy-splash is a library which provides Scrapy and JavaScript integration. | 7.5 |
| 2021-10-04 | CVE-2021-41092 | Information Exposure vulnerability in multiple products Docker CLI is the command line interface for the docker container runtime. | 7.5 |
| 2021-09-30 | CVE-2021-41109 | Information Exposure vulnerability in Parseplatform Parse-Server Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. | 7.5 |
| 2021-09-29 | CVE-2021-39855 | Information Exposure vulnerability in Adobe products Acrobat Reader DC ActiveX Control versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017.011.30199 (and earlier) are affected by an Information Disclosure vulnerability. | 6.5 |
| 2021-09-29 | CVE-2021-39856 | Information Exposure vulnerability in Adobe products Acrobat Reader DC ActiveX Control versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017.011.30199 (and earlier) are affected by an Information Disclosure vulnerability. | 6.5 |
| 2021-09-20 | CVE-2021-24585 | Information Exposure vulnerability in Motopress Timetable and Event Schedule The Timetable and Event Schedule WordPress plugin before 2.4.0 outputs the Hashed Password, Username and Email Address (along other less sensitive data) of the user related to the Even Head of the Timeslot in the response when requesting the event Timeslot data with a user with the edit_posts capability. | 6.5 |
| 2021-09-19 | CVE-2021-40690 | Information Exposure vulnerability in multiple products All versions of Apache Santuario - XML Security for Java prior to 2.2.3 and 2.1.7 are vulnerable to an issue where the "secureValidation" property is not passed correctly when creating a KeyInfo from a KeyInfoReference element. | 7.5 |
| 2021-09-15 | CVE-2021-40862 | Information Exposure vulnerability in Hashicorp Terraform Enterprise HashiCorp Terraform Enterprise up to v202108-1 contained an API endpoint that erroneously disclosed a sensitive URL to authenticated parties, which could be used for privilege escalation or unauthorized modification of a Terraform configuration. | 8.8 |