Vulnerabilities > Information Exposure
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-02-20 | CVE-2014-4019 | Information Exposure vulnerability in ZTE Zxv10 W300 Firmware W300V1.0.0Azrdlk ZTE ZXV10 W300 router with firmware W300V1.0.0a_ZRD_LK stores sensitive information under the web root with insufficient access control, which allows remote attackers to read backup files via a direct request for rom-0. | 7.5 |
| 2020-02-20 | CVE-2011-4915 | Information Exposure vulnerability in multiple products fs/proc/base.c in the Linux kernel through 3.1 allows local users to obtain sensitive keystroke information via access to /proc/interrupts. | 5.5 |
| 2020-02-20 | CVE-2014-4658 | Information Exposure vulnerability in Redhat Ansible The vault subsystem in Ansible before 1.5.5 does not set the umask before creation or modification of a vault file, which allows local users to obtain sensitive key information by reading a file. | 5.5 |
| 2020-02-19 | CVE-2015-9543 | Information Exposure vulnerability in Openstack Nova An issue was discovered in OpenStack Nova before 18.2.4, 19.x before 19.1.0, and 20.x before 20.1.0. | 3.3 |
| 2020-02-17 | CVE-2020-9043 | Information Exposure vulnerability in Wpcentral The wpCentral plugin before 1.5.1 for WordPress allows disclosure of the connection key. | 8.8 |
| 2020-02-14 | CVE-2019-6193 | Information Exposure vulnerability in Lenovo Xclarity Administrator An information disclosure vulnerability was reported in Lenovo XClarity Administrator (LXCA) versions prior to 2.6.6 that could allow unauthenticated access to some configuration files which may contain usernames, license keys, IP addresses, and encrypted password hashes. | 7.5 |
| 2020-02-14 | CVE-2013-5687 | Information Exposure vulnerability in Aicorporation Risknet Acquirer 6.0 RiskNet Acquirer before hotfix 6.0 b7+ADHOC-443 ApplicationServiceBean contains a service information disclosure. | 7.5 |
| 2020-02-13 | CVE-2012-6091 | Information Exposure vulnerability in Magentocommerce Magento Zend_XmlRpc Class in Magento before 1.7.0.2 contains an information disclosure vulnerability. | 7.5 |
| 2020-02-13 | CVE-2018-3987 | Information Exposure vulnerability in Rakuten Viber 9.3.0.6 An exploitable information disclosure vulnerability exists in the 'Secret Chats' functionality of Rakuten Viber on Android 9.3.0.6. | 5.5 |
| 2020-02-12 | CVE-2020-6190 | Information Exposure vulnerability in SAP Netweaver Application Server Java Certain vulnerable endpoints in SAP NetWeaver AS Java (Heap Dump Application), versions 7.30, 7.31, 7.40, 7.50, provide valuable information about the system like hostname, server node and installation path that could be misused by an attacker leading to Information Disclosure. | 5.8 |