Vulnerabilities > Improper Output Neutralization for Logs
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-02-02 | CVE-2023-38020 | Improper Output Neutralization for Logs vulnerability in IBM Soar Qradar Plugin APP IBM SOAR QRadar Plugin App 1.0 through 5.0.3 could allow an authenticated user to manipulate output written to log files. | 4.3 |
2023-12-13 | CVE-2023-46713 | Improper Output Neutralization for Logs vulnerability in Fortinet Fortiweb An improper output neutralization for logs in Fortinet FortiWeb 6.2.0 - 6.2.8, 6.3.0 - 6.3.23, 7.0.0 - 7.0.9, 7.2.0 - 7.2.5 and 7.4.0 may allow an attacker to forge traffic logs via a crafted URL of the web application. | 5.3 |
2023-07-13 | CVE-2023-37275 | Improper Output Neutralization for Logs vulnerability in Agpt Auto-Gpt Auto-GPT is an experimental open-source application showcasing the capabilities of the GPT-4 language model. | 4.3 |
2023-07-11 | CVE-2023-31405 | Improper Output Neutralization for Logs vulnerability in SAP Netweaver Application Server for Java 7.50 SAP NetWeaver AS for Java - versions ENGINEAPI 7.50, SERVERCORE 7.50, J2EE-APPS 7.50, allows an unauthenticated attacker to craft a request over the network which can result in unwarranted modifications to a system log without user interaction. | 5.3 |
2023-07-11 | CVE-2023-36924 | Improper Output Neutralization for Logs vulnerability in SAP ERP Defense Forces and Public Security While using a specific function, SAP ERP Defense Forces and Public Security - versions 600, 603, 604, 605, 616, 617, 618, 802, 803, 804, 805, 806, 807, allows an authenticated attacker with admin privileges to write arbitrary data to the syslog file. | 4.9 |
2020-09-11 | CVE-2020-14332 | Improper Output Neutralization for Logs vulnerability in multiple products A flaw was found in the Ansible Engine when using module_args. | 5.5 |
2020-06-25 | CVE-2020-4072 | Improper Output Neutralization for Logs vulnerability in Jhipster Generator-Jhipster-Kotlin 1.6.0 In generator-jhipster-kotlin version 1.6.0 log entries are created for invalid password reset attempts. | 5.0 |
2020-01-07 | CVE-2019-14854 | Improper Output Neutralization for Logs vulnerability in Redhat Openshift Container Platform 4.1/4.2 OpenShift Container Platform 4 does not sanitize secret data written to static pod logs when the log level in a given operator is set to Debug or higher. | 6.5 |
2020-01-02 | CVE-2019-14864 | Improper Output Neutralization for Logs vulnerability in multiple products Ansible, versions 2.9.x before 2.9.1, 2.8.x before 2.8.7 and Ansible versions 2.7.x before 2.7.15, is not respecting the flag no_log set it to True when Sumologic and Splunk callback plugins are used send tasks results events to collectors. | 4.0 |
2019-11-25 | CVE-2019-10213 | Improper Output Neutralization for Logs vulnerability in Redhat Openshift Container Platform 4.1/4.2 OpenShift Container Platform, versions 4.1 and 4.2, does not sanitize secret data written to pod logs when the log level in a given operator is set to Debug or higher. | 6.5 |