Vulnerabilities > Information Exposure Through an Error Message

DATE CVE VULNERABILITY TITLE RISK
2022-10-29 CVE-2021-42777 Information Exposure Through an Error Message vulnerability in Stimulsoft Reports 2013.1.1600.0
Stimulsoft (aka Stimulsoft Reports) 2013.1.1600.0, when Compilation Mode is used, allows an attacker to execute arbitrary C# code on any machine that renders a report, including the application server or a user's local machine, as demonstrated by System.Diagnostics.Process.Start.
network
low complexity
stimulsoft CWE-209
critical
9.8
2022-10-27 CVE-2022-2508 Information Exposure Through an Error Message vulnerability in Octopus Server
In affected versions of Octopus Server it is possible to reveal the existence of resources in a space that the user does not have access to due to verbose error messaging.
network
low complexity
octopus CWE-209
5.3
2022-10-25 CVE-2022-39315 Information Exposure Through an Error Message vulnerability in Getkirby Kirby
Kirby is a Content Management System.
network
low complexity
getkirby CWE-209
5.3
2022-10-19 CVE-2022-38107 Information Exposure Through an Error Message vulnerability in Solarwinds SQL Sentry 2021.18.10
Sensitive information could be displayed when a detailed technical error message is posted.
network
low complexity
solarwinds CWE-209
5.3
2022-09-28 CVE-2022-2760 Information Exposure Through an Error Message vulnerability in Octopus Server
In affected versions of Octopus Deploy it is possible to reveal the Space ID of spaces that the user does not have access to view in an error message when a resource is part of another Space.
network
low complexity
octopus CWE-209
4.3
2022-09-14 CVE-2021-38924 Information Exposure Through an Error Message vulnerability in IBM Maximo Application Suite and Maximo Asset Management
IBM Maximo Asset Management 7.6.1.1 and 7.6.1.2 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser.
network
low complexity
ibm CWE-209
7.5
2022-09-06 CVE-2022-34882 Information Exposure Through an Error Message vulnerability in Hitachi Raid Manager Storage Replication Adapter
Information Exposure Through an Error Message vulnerability in Hitachi RAID Manager Storage Replication Adapter allows remote authenticated users to gain sensitive information.
network
low complexity
hitachi CWE-209
6.5
2022-08-22 CVE-2021-3513 Information Exposure Through an Error Message vulnerability in Redhat Keycloak
A flaw was found in keycloak where a brute force attack is possible even when the permanent lockout feature is enabled.
network
low complexity
redhat CWE-209
7.5
2022-08-16 CVE-2021-39086 Information Exposure Through an Error Message vulnerability in IBM Sterling File Gateway
IBM Sterling File Gateway 6.0.0.0 through 6.0.3.5, 6.1.0.0 through 6.1.0.4, and 6.1.1.0 through 6.1.1.1 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser.
network
low complexity
ibm CWE-209
5.3
2022-08-10 CVE-2022-33930 Information Exposure Through an Error Message vulnerability in Dell Wyse Management Suite
Dell Wyse Management Suite 3.6.1 and below contains Information Disclosure in Devices error pages.
network
low complexity
dell CWE-209
7.5