Vulnerabilities > Information Exposure
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-05-06 | CVE-2018-4069 | Information Exposure vulnerability in Sierrawireless Airlink Es450 Firmware 4.9.3 An information disclosure vulnerability exists in the ACEManager authentication functionality of Sierra Wireless AirLink ES450 FW 4.9.3. | 7.5 |
| 2019-05-06 | CVE-2018-4068 | Information Exposure vulnerability in Sierrawireless Airlink Es450 Firmware 4.9.3 An exploitable information disclosure vulnerability exists in the ACEManager functionality of Sierra Wireless AirLink ES450 FW 4.9.3. | 5.3 |
| 2019-05-06 | CVE-2019-3797 | Information Exposure vulnerability in Pivotal Software Spring Data Java Persistence API This affects Spring Data JPA in versions up to and including 2.1.5, 2.0.13 and 1.11.19. | 5.3 |
| 2019-05-01 | CVE-2019-11633 | Information Exposure vulnerability in Honeypress Project Honeypress 20160927 HoneyPress through 2016-09-27 can be fingerprinted by attackers because of the ingrained unique www.atxsec.com and ayylmao.wpengine.com hostnames within the fake WordPress templates. | 7.5 |
| 2019-04-30 | CVE-2018-20510 | Information Exposure vulnerability in Linux Kernel 4.14.90 The print_binder_transaction_ilocked function in drivers/android/binder.c in the Linux kernel 4.14.90 allows local users to obtain sensitive address information by reading "*from *code *flags" lines in a debugfs file. | 5.5 |
| 2019-04-30 | CVE-2018-20509 | Information Exposure vulnerability in Linux Kernel 4.14.90 The print_binder_ref_olocked function in drivers/android/binder.c in the Linux kernel 4.14.90 allows local users to obtain sensitive address information by reading " ref *desc *node" lines in a debugfs file. | 5.5 |
| 2019-04-29 | CVE-2018-1961 | Information Exposure vulnerability in IBM Emptoris Contract Management IBM Emptoris Contract Management 10.0.0 and 10.1.3.0 could disclose sensitive information from detailed information from error messages. | 5.3 |
| 2019-04-26 | CVE-2018-18511 | Information Exposure vulnerability in Mozilla Firefox 65.0 Cross-origin images can be read from a canvas element in violation of the same-origin policy using the transferFromImageBitmap method. | 4.3 |
| 2019-04-24 | CVE-2019-3868 | Information Exposure vulnerability in Redhat Keycloak Keycloak up to version 6.0.0 allows the end user token (access or id token JWT) to be used as the session cookie for browser sessions for OIDC. | 3.8 |
| 2019-04-22 | CVE-2019-10247 | Information Exposure vulnerability in multiple products In Eclipse Jetty version 7.x, 8.x, 9.2.27 and older, 9.3.26 and older, and 9.4.16 and older, the server running on any OS and Jetty version combination will reveal the configured fully qualified directory base resource location on the output of the 404 error for not finding a Context that matches the requested path. | 5.3 |