Vulnerabilities > Information Exposure
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-11-13 | CVE-2020-26230 | Information Exposure vulnerability in Radarcovid Radar-Covid-Backend-Dp3T-Server and Radarcovid Radar COVID is the official COVID-19 exposure notification app for Spain. | 5.3 |
| 2020-11-11 | CVE-2020-26220 | Information Exposure vulnerability in Touchbase.Ai Project Touchbase.Ai 1.1.0 toucbase.ai before version 2.0 leaks information by not stripping exif data from images. | 3.5 |
| 2020-11-10 | CVE-2020-27403 | Information Exposure vulnerability in TCL products A vulnerability in the TCL Android Smart TV series V8-R851T02-LF1 V295 and below and V8-T658T01-LF1 V373 and below by TCL Technology Group Corporation allows an attacker on the adjacent network to arbitrarily browse and download sensitive files over an insecure web server running on port 7989 that lists all files & directories. | 6.5 |
| 2020-11-03 | CVE-2020-4649 | Information Exposure vulnerability in IBM Planning Analytics Local IBM Planning Analytics Local 2.0.9.2 and IBM Planning Analytics Workspace 57 could expose data to non-privleged users by not invalidating TM1Web user sessions. | 4.3 |
| 2020-11-03 | CVE-2019-4349 | Information Exposure vulnerability in IBM Maximo Anywhere IBM Maximo Anywhere 7.6.2.0, 7.6.2.1, 7.6.3.0, and 7.6.3.1 applications can be installed on a deprecated operating system version that could compromised the confidentiality and integrity of the service. | 3.5 |
| 2020-10-21 | CVE-2020-27612 | Information Exposure vulnerability in Bigbluebutton Greenlight in BigBlueButton through 2.2.28 places usernames in room URLs, which may represent an unintended information leak to users in a room, or an information leak to outsiders if any user publishes a screenshot of a browser window. | 4.3 |
| 2020-10-20 | CVE-2020-15931 | Information Exposure vulnerability in Netwrix Account Lockout Examiner Netwrix Account Lockout Examiner before 5.1 allows remote attackers to capture the Net-NTLMv1/v2 authentication challenge hash of the Domain Administrator (that is configured within the product in its installation state) by generating a single Kerberos Pre-Authentication Failed (ID 4771) event on a Domain Controller. | 7.5 |
| 2020-10-15 | CVE-2020-1777 | Information Exposure vulnerability in Otrs Agent names that participates in a chat conversation are revealed in certain parts of the external interface as well as in chat transcriptions inside the tickets, when system is configured to mask real agent names. | 5.3 |
| 2020-10-06 | CVE-2020-14183 | Information Exposure vulnerability in Atlassian Jira Affected versions of Jira Server & Data Center allow a remote attacker with limited (non-admin) privileges to view a Jira instance's Support Entitlement Number (SEN) via an Information Disclosure vulnerability in the HTTP Response headers. | 4.3 |
| 2020-09-21 | CVE-2020-6570 | Information Exposure vulnerability in multiple products Information leakage in WebRTC in Google Chrome prior to 85.0.4183.83 allowed a remote attacker to obtain potentially sensitive information via a crafted WebRTC interaction. | 4.3 |