Vulnerabilities > Information Exposure
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-04-03 | CVE-2018-4300 | Information Exposure vulnerability in Apple Cups The session cookie generated by the CUPS web interface was easy to guess on Linux, allowing unauthorized scripted access to the web interface when the web interface is enabled. | 5.9 |
| 2019-04-03 | CVE-2018-4289 | Information Exposure vulnerability in Apple mac OS X An information disclosure issue was addressed by removing the vulnerable code. | 5.5 |
| 2019-04-02 | CVE-2018-4052 | Information Exposure vulnerability in GOG Galaxy 1.2.47 An exploitable local information leak vulnerability exists in the privileged helper tool of GOG Galaxy's Games, version 1.2.47 for macOS. | 5.5 |
| 2019-04-02 | CVE-2018-1917 | Information Exposure vulnerability in IBM products IBM InfoSphere Information Server 11.3, 11.5, and 11.7 could allow an authenticated user to access JSP files and disclose sensitive information. | 6.5 |
| 2019-04-02 | CVE-2018-1874 | Information Exposure vulnerability in IBM API Connect IBM API Connect 5.0.0.0 through 5.0.8.5 could display highly sensitive information to an attacker with physical access to the system. | 4.6 |
| 2019-04-02 | CVE-2018-1625 | Information Exposure vulnerability in IBM Security Privileged Identity Manager 2.1.1 IBM Security Privileged Identity Manager Virtual Appliance 2.2.1 generates an error message that includes sensitive information about its environment, users, or associated data. | 4.3 |
| 2019-04-02 | CVE-2018-1623 | Information Exposure vulnerability in IBM Security Privileged Identity Manager 2.1.1 IBM Security Privileged Identity Manager Virtual Appliance 2.2.1 allows web pages to be stored locally which can be read by another user on the system. | 3.3 |
| 2019-04-01 | CVE-2018-13297 | Information Exposure vulnerability in Synology Drive Server Information exposure vulnerability in SYNO.SynologyDrive.Files in Synology Drive before 1.1.2-10562 allows remote attackers to obtain sensitive system information via the dsm_path parameter. | 5.3 |
| 2019-04-01 | CVE-2018-13295 | Information Exposure vulnerability in Synology Application Service Information exposure vulnerability in SYNO.Personal.Application.Info in Synology Application Service before 1.5.4-0320 allows remote authenticated users to obtain sensitive system information via the version parameter. | 6.5 |
| 2019-04-01 | CVE-2018-13294 | Information Exposure vulnerability in Synology Application Service Information exposure vulnerability in SYNO.Personal.Profile in Synology Application Service before 1.5.4-0320 allows remote authenticated users to obtain sensitive system information via the uid parameter. | 6.5 |