Vulnerabilities > Information Exposure
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-07-03 | CVE-2019-5601 | Information Exposure vulnerability in Freebsd 11.2/12.0 In FreeBSD 12.0-STABLE before r347474, 12.0-RELEASE before 12.0-RELEASE-p7, 11.2-STABLE before r347475, and 11.2-RELEASE before 11.2-RELEASE-p11, a bug in the FFS implementation causes up to three bytes of kernel stack memory to be written to disk as uninitialized directory entry padding. | 6.5 |
| 2019-07-03 | CVE-2018-14865 | Information Exposure vulnerability in Odoo 10.0/11.0/9.0 Report engine in Odoo Community 9.0 through 11.0 and earlier and Odoo Enterprise 9.0 through 11.0 and earlier does not use secure options when passing documents to wkhtmltopdf, which allows remote attackers to read local files. | 6.5 |
| 2019-07-02 | CVE-2017-11578 | Information Exposure vulnerability in Blipcare Wi-Fi Blood Pressure Monitor Firmware Bp70010.1 It was discovered as a part of the research on IoT devices in the most recent firmware for Blipcare device that the device allows to connect to web management interface on a non-SSL connection using plain text HTTP protocol. | 5.9 |
| 2019-07-02 | CVE-2019-7259 | Information Exposure vulnerability in Nortekcontrol products Linear eMerge E3-Series devices allow Authorization Bypass with Information Disclosure. | 8.8 |
| 2019-07-02 | CVE-2019-4140 | Information Exposure vulnerability in IBM Spectrum Protect IBM Tivoli Storage Manager Server (IBM Spectrum Protect 7.1 and 8.1) could allow a local user to replace existing databases by restoring old data. | 7.1 |
| 2019-06-30 | CVE-2019-13075 | Information Exposure vulnerability in Torproject TOR Browser Tor Browser through 8.5.3 has an information exposure vulnerability. | 5.3 |
| 2019-06-29 | CVE-2019-13055 | Information Exposure vulnerability in Logitech K360 Firmware and Unifying Receiver Firmware Certain Logitech Unifying devices allow attackers to dump AES keys and addresses, leading to the capability of live decryption of Radio Frequency transmissions, as demonstrated by an attack against a Logitech K360 keyboard. | 6.5 |
| 2019-06-28 | CVE-2018-20812 | Information Exposure vulnerability in Pulsesecure Pulse Secure Desktop Client An information exposure issue where IPv6 DNS traffic would be sent outside of the VPN tunnel (when Traffic Enforcement was enabled) exists in Pulse Secure Pulse Secure Desktop 9.0R1 and below. | 7.5 |
| 2019-06-28 | CVE-2018-20811 | Information Exposure vulnerability in Ivanti Connect Secure 8.1/8.3 A hidden RPC service issue was found with Pulse Secure Pulse Connect Secure 8.3RX before 8.3R2 and 8.1RX before 8.1R12. | 5.3 |
| 2019-06-27 | CVE-2018-6177 | Information Exposure vulnerability in Google Chrome Information leak in media engine in Google Chrome prior to 68.0.3440.75 allowed a remote attacker to leak cross-origin data via a crafted HTML page. | 4.3 |