Vulnerabilities > Improper Cross-boundary Removal of Sensitive Data

DATE CVE VULNERABILITY TITLE RISK
2022-11-10 CVE-2022-39393 Improper Cross-boundary Removal of Sensitive Data vulnerability in Bytecodealliance Wasmtime
Wasmtime is a standalone runtime for WebAssembly.
network
low complexity
bytecodealliance CWE-212
8.6
2022-08-26 CVE-2022-0171 Improper Cross-boundary Removal of Sensitive Data vulnerability in multiple products
A flaw was found in the Linux kernel.
local
low complexity
linux redhat debian CWE-212
5.5
2022-08-15 CVE-2022-2818 Improper Cross-boundary Removal of Sensitive Data vulnerability in Agentejo Cockpit
Improper Removal of Sensitive Information Before Storage or Transfer in GitHub repository cockpit-hq/cockpit prior to 2.2.2.
network
low complexity
agentejo CWE-212
8.8
2022-07-22 CVE-2022-31162 Improper Cross-boundary Removal of Sensitive Data vulnerability in Slack Morphism Project Slack Morphism
Slack Morphism is an async client library for Rust.
network
low complexity
slack-morphism-project CWE-212
7.5
2022-07-12 CVE-2022-29900 Improper Cross-boundary Removal of Sensitive Data vulnerability in multiple products
Mis-trained branch predictions for return instructions may allow arbitrary speculative code execution under certain microarchitecture-dependent conditions.
local
low complexity
xen debian fedoraproject amd CWE-212
6.5
2022-07-05 CVE-2022-33740 Improper Cross-boundary Removal of Sensitive Data vulnerability in multiple products
Linux disk/nic frontends data leaks T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend (CVE-2022-26365, CVE-2022-33740).
local
low complexity
fedoraproject debian linux xen CWE-212
7.1
2022-06-30 CVE-2022-31112 Improper Cross-boundary Removal of Sensitive Data vulnerability in Parseplatform Parse-Server
Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js.
network
low complexity
parseplatform CWE-212
8.2
2022-06-27 CVE-2022-31090 Improper Cross-boundary Removal of Sensitive Data vulnerability in multiple products
Guzzle, an extensible PHP HTTP client.
network
low complexity
guzzlephp debian CWE-212
7.7
2022-06-13 CVE-2021-46813 Improper Cross-boundary Removal of Sensitive Data vulnerability in Huawei Emui and Magic UI
Vulnerability of residual files not being deleted after an update in the ChinaDRM module.
network
low complexity
huawei CWE-212
7.5
2022-06-10 CVE-2022-31042 Improper Cross-boundary Removal of Sensitive Data vulnerability in multiple products
Guzzle is an open source PHP HTTP client.
network
low complexity
guzzlephp drupal debian CWE-212
7.5