Vulnerabilities > Information Exposure
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-08-10 | CVE-2020-12777 | Information Exposure vulnerability in Combodo Itop A function in Combodo iTop contains a vulnerability of Broken Access Control, which allows unauthorized attacker to inject command and disclose system information. | 7.5 |
| 2020-08-05 | CVE-2017-18112 | Information Exposure vulnerability in Atlassian Fisheye Affected versions of Atlassian Fisheye allow remote attackers to view the HTTP password of a repository via an Information Disclosure vulnerability in the logging feature. | 6.5 |
| 2020-07-30 | CVE-2020-4186 | Information Exposure vulnerability in IBM Security Guardium 10.5/10.6/11.1 IBM Security Guardium 10.5, 10.6, and 11.1 could disclose sensitive information on the login page that could aid in further attacks against the system. | 5.3 |
| 2020-07-28 | CVE-2019-4731 | Information Exposure vulnerability in IBM MQ Appliance 9.1.4 IBM MQ Appliance 9.1.4.CD could allow a local attacker to obtain highly sensitive information by inclusion of sensitive data within trace. | 5.5 |
| 2020-07-22 | CVE-2020-6514 | Information Exposure vulnerability in multiple products Inappropriate implementation in WebRTC in Google Chrome prior to 84.0.4147.89 allowed an attacker in a privileged network position to potentially exploit heap corruption via a crafted SCTP stream. | 6.5 |
| 2020-07-20 | CVE-2020-4361 | Information Exposure vulnerability in IBM Planning Analytics 2.0 IBM Planning Analytics 2.0 could allow a remote attacker to obtain sensitive information by disclosing private IP addresses in HTTP responses. | 4.3 |
| 2020-07-17 | CVE-2020-7696 | Information Exposure vulnerability in React-Native-Fast-Image Project React-Native-Fast-Image This affects all versions of package react-native-fast-image. | 5.3 |
| 2020-07-03 | CVE-2020-7284 | Information Exposure vulnerability in Mcafee Network Security Management 10.0/9.0 Exposure of Sensitive Information in McAfee Network Security Management (NSM) prior to 10.1.7.7 allows local users to gain unauthorised access to the root account via execution of carefully crafted commands from the restricted command line interface (CLI). | 7.8 |
| 2020-07-02 | CVE-2020-15081 | Information Exposure vulnerability in Prestashop In PrestaShop from version 1.5.0.0 and before 1.7.6.6, there is information exposure in the upload directory. | 5.3 |
| 2020-07-02 | CVE-2020-15502 | Information Exposure vulnerability in Duckduckgo The DuckDuckGo application through 5.58.0 for Android, and through 7.47.1.0 for iOS, sends hostnames of visited web sites within HTTPS .ico requests to servers in the duckduckgo.com domain, which might make visit data available temporarily at a Potentially Unwanted Endpoint. | 7.5 |