Vulnerabilities > Information Exposure Through an Error Message

DATE CVE VULNERABILITY TITLE RISK
2024-05-21 CVE-2024-31844 Information Exposure Through an Error Message vulnerability in Italtel Embrace 1.6.4
An issue was discovered in Italtel Embrace 1.6.4.
network
low complexity
italtel CWE-209
5.3
2024-04-26 CVE-2024-32046 Information Exposure Through an Error Message vulnerability in Mattermost Server
Mattermost versions 9.6.x <= 9.6.0, 9.5.x <= 9.5.2, 9.4.x <= 9.4.4 and 8.1.x <= 8.1.11 fail to remove detailed error messages in API requests even if the developer mode is off which allows an attacker to get information about the server such as the full path were files are stored
network
low complexity
mattermost CWE-209
4.3
2024-03-23 CVE-2024-29059 Information Exposure Through an Error Message vulnerability in Microsoft .Net Framework
.NET Framework Information Disclosure Vulnerability
network
low complexity
microsoft CWE-209
7.5
2024-02-28 CVE-2023-5617 Information Exposure Through an Error Message vulnerability in Hitachi Vantara Pentaho Data Integration and Analytics
Hitachi Vantara Pentaho Data Integration & Analytics versions before 10.1.0.0 and 9.3.0.6, including 9.5.x and 8.3.x, display the version of Tomcat when a server error is encountered.
network
low complexity
hitachi CWE-209
5.3
2024-02-02 CVE-2024-21866 Information Exposure Through an Error Message vulnerability in Rapidscada Rapid Scada
In Rapid Software LLC's Rapid SCADA versions prior to Version 5.8.4, the affected product responds back with an error message containing sensitive data if it receives a specific malformed request.
network
low complexity
rapidscada CWE-209
5.3
2024-01-30 CVE-2024-22646 Information Exposure Through an Error Message vulnerability in Seopanel SEO Panel 4.10.0
An email address enumeration vulnerability exists in the password reset function of SEO Panel version 4.10.0.
network
low complexity
seopanel CWE-209
5.3
2024-01-25 CVE-2024-21619 Information Exposure Through an Error Message vulnerability in Juniper Junos
A Missing Authentication for Critical Function vulnerability combined with a Generation of Error Message Containing Sensitive Information vulnerability in J-Web of Juniper Networks Junos OS on SRX Series and EX Series allows an unauthenticated, network-based attacker to access sensitive system information. When a user logs in, a temporary file which contains the configuration of the device (as visible to that user) is created in the /cache folder.
network
low complexity
juniper CWE-209
7.5
2024-01-19 CVE-2024-23689 Information Exposure Through an Error Message vulnerability in Clickhouse Java Libraries
Exposure of sensitive information in exceptions in ClichHouse's clickhouse-r2dbc, com.clickhouse:clickhouse-jdbc, and com.clickhouse:clickhouse-client versions less than 0.4.6 allows unauthorized users to gain access to client certificate passwords via client exception logs.
network
low complexity
clickhouse CWE-209
8.8
2024-01-16 CVE-2023-49107 Information Exposure Through an Error Message vulnerability in Hitachi Device Manager
Generation of Error Message Containing Sensitive Information vulnerability in Hitachi Device Manager on Windows, Linux (Device Manager Agent modules).This issue affects Hitachi Device Manager: before 8.8.5-04.
network
low complexity
hitachi CWE-209
7.5
2024-01-04 CVE-2023-6944 Information Exposure Through an Error Message vulnerability in multiple products
A flaw was found in the Red Hat Developer Hub (RHDH).
network
low complexity
redhat linuxfoundation CWE-209
5.7