Vulnerabilities > Information Exposure Through an Error Message

DATE CVE VULNERABILITY TITLE RISK
2024-12-25 CVE-2024-39725 Information Exposure Through an Error Message vulnerability in IBM Engineering Lifecycle Optimization - Engineering Insights 7.0.2/7.0.3
IBM Engineering Lifecycle Optimization - Engineering Insights 7.0.2 and 7.0.3 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser.
network
low complexity
ibm CWE-209
5.3
2024-12-17 CVE-2024-49818 Information Exposure Through an Error Message vulnerability in IBM Security Guardium KEY Lifecycle Manager
IBM Security Guardium Key Lifecycle Manager 4.1, 4.1.1, 4.2.0, and 4.2.1 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser.
network
low complexity
ibm CWE-209
4.3
2024-12-11 CVE-2024-51460 Information Exposure Through an Error Message vulnerability in IBM Infosphere Information Server 11.7
IBM InfoSphere Information Server 11.7 could allow an authenticated user to obtain sensitive information when a detailed technical error message is returned in a stack trace.
network
low complexity
ibm CWE-209
4.3
2024-11-18 CVE-2024-48896 Information Exposure Through an Error Message vulnerability in Moodle
A vulnerability was found in Moodle.
network
low complexity
moodle CWE-209
4.3
2024-11-06 CVE-2024-52043 Information Exposure Through an Error Message vulnerability in Humhub
Generation of Error Message Containing Sensitive Information in HumHub GmbH & Co.
network
low complexity
humhub CWE-209
5.3
2024-11-04 CVE-2024-51560 Information Exposure Through an Error Message vulnerability in 63Moons Aero and Wave 2.0
This vulnerability exists in the Wave 2.0 due to improper exception handling for invalid inputs at certain API endpoint.
network
low complexity
63moons CWE-209
4.3
2024-10-23 CVE-2023-50355 Information Exposure Through an Error Message vulnerability in Hcltech Sametime 11.6/12.0/12.0.2
HCL Sametime is impacted by the error messages containing sensitive information.
network
low complexity
hcltech CWE-209
5.3
2024-10-17 CVE-2024-45713 Information Exposure Through an Error Message vulnerability in Solarwinds Kiwi Cattools
SolarWinds Kiwi CatTools is susceptible to a sensitive data disclosure vulnerability when a non-default setting has been enabled for troubleshooting purposes.
local
low complexity
solarwinds CWE-209
4.4
2024-10-09 CVE-2024-7038 Information Exposure Through an Error Message vulnerability in Openwebui Open Webui
An information disclosure vulnerability exists in open-webui version 0.3.8.
network
low complexity
openwebui CWE-209
2.7
2024-10-02 CVE-2024-47803 Information Exposure Through an Error Message vulnerability in Jenkins
Jenkins 2.478 and earlier, LTS 2.462.2 and earlier does not redact multi-line secret values in error messages generated for form submissions involving the `secretTextarea` form field.
network
low complexity
jenkins CWE-209
4.3