Vulnerabilities > Information Exposure Through an Error Message

DATE CVE VULNERABILITY TITLE RISK
2022-08-10 CVE-2022-35715 Information Exposure Through an Error Message vulnerability in IBM Infosphere Information Server 11.7
IBM InfoSphere Information Server 11.7 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in a stack trace.
network
low complexity
ibm CWE-209
7.5
2022-07-14 CVE-2021-39018 Information Exposure Through an Error Message vulnerability in IBM Engineering Lifecycle Optimization Publishing
IBM Engineering Lifecycle Optimization - Publishing 6.0.6, 6.0.6.1, 7.0, 7.0.1, and 7.0.2 could disclose sensitive information in a SQL error message that could aid in further attacks against the system.
network
low complexity
ibm CWE-209
4.3
2022-07-06 CVE-2022-31124 Information Exposure Through an Error Message vulnerability in Openssh KEY Parser Project Openssh KEY Parser
openssh_key_parser is an open source Python package providing utilities to parse and pack OpenSSH private and public key files.
network
low complexity
openssh-key-parser-project CWE-209
6.5
2022-06-28 CVE-2022-31229 Information Exposure Through an Error Message vulnerability in Dell Powerscale Onefs
Dell PowerScale OneFS, 8.2.x through 9.3.0.x, contain an error message with sensitive information.
network
low complexity
dell CWE-209
4.9
2022-06-14 CVE-2022-31047 Information Exposure Through an Error Message vulnerability in Typo3
TYPO3 is an open source web content management system.
network
low complexity
typo3 CWE-209
6.5
2022-06-02 CVE-2022-26973 Information Exposure Through an Error Message vulnerability in Barco Control Room Management Suite
Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a license file upload mechanism.
network
low complexity
barco CWE-209
5.3
2022-05-20 CVE-2022-24906 Information Exposure Through an Error Message vulnerability in Nextcloud Deck
Nextcloud Deck is a Kanban-style project & personal management tool for Nextcloud, similar to Trello.
network
low complexity
nextcloud CWE-209
4.3
2022-05-06 CVE-2022-26070 Information Exposure Through an Error Message vulnerability in Splunk
When handling a mismatched pre-authentication cookie, the application leaks the internal error message in the response, which contains the Splunk Enterprise local system path.
network
low complexity
splunk CWE-209
4.3
2022-05-06 CVE-2021-39023 Information Exposure Through an Error Message vulnerability in IBM Guardium Data Encryption
IBM Guardium Data Encryption (GDE) 4.0.0 and 5.0.0 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser.
network
low complexity
ibm CWE-209
7.5
2022-05-04 CVE-2021-43206 Information Exposure Through an Error Message vulnerability in Fortinet Fortios and Fortiproxy
A server-generated error message containing sensitive information in Fortinet FortiOS 7.0.0 through 7.0.3, 6.4.0 through 6.4.8, 6.2.x, 6.0.x and FortiProxy 7.0.0 through 7.0.1, 2.0.x allows malicious webservers to retrieve a web proxy's client username and IP via same origin HTTP requests triggering proxy-generated HTTP status codes pages.
network
low complexity
fortinet CWE-209
4.3