Vulnerabilities > Incomplete Cleanup
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-21 | CVE-2022-48893 | Incomplete Cleanup vulnerability in Linux Kernel In the Linux kernel, the following vulnerability has been resolved: drm/i915/gt: Cleanup partial engine discovery failures If we abort driver initialisation in the middle of gt/engine discovery, some engines will be fully setup and some not. | 5.5 |
| 2024-06-25 | CVE-2024-6300 | Incomplete Cleanup vulnerability in Conduit Incomplete cleanup when performing redactions in Conduit, allowing an attacker to check whether certain strings were present in the PDU before redaction | 5.3 |
| 2024-03-13 | CVE-2024-2403 | Incomplete Cleanup vulnerability in Devolutions Remote Desktop Manager Improper cleanup in temporary file handling component in Devolutions Remote Desktop Manager 2024.1.12 and earlier on Windows allows an attacker that compromised a user endpoint, under specific circumstances, to access sensitive information via residual files in the temporary directory. | 5.9 |
| 2024-02-06 | CVE-2024-1048 | Incomplete Cleanup vulnerability in multiple products A flaw was found in the grub2-set-bootflag utility of grub2. | 3.3 |
| 2024-01-12 | CVE-2024-21617 | Incomplete Cleanup vulnerability in Juniper Junos An Incomplete Cleanup vulnerability in Nonstop active routing (NSR) component of Juniper Networks Junos OS allows an adjacent, unauthenticated attacker to cause memory leak leading to Denial of Service (DoS). On all Junos OS platforms, when NSR is enabled, a BGP flap will cause memory leak. | 6.5 |
| 2023-12-05 | CVE-2023-41835 | Incomplete Cleanup vulnerability in Apache Struts When a Multipart request is performed but some of the fields exceed the maxStringLength limit, the upload files will remain in struts.multipart.saveDir even if the request has been denied. Users are recommended to upgrade to versions Struts 2.5.32 or 6.1.2.2 or Struts 6.3.0.1 or greater, which fixe this issue. | 7.5 |
| 2023-11-14 | CVE-2021-46766 | Incomplete Cleanup vulnerability in AMD products Improper clearing of sensitive data in the ASP Bootloader may expose secret keys to a privileged attacker accessing ASP SRAM, potentially leading to a loss of confidentiality. | 5.5 |
| 2023-11-14 | CVE-2022-43477 | Incomplete Cleanup vulnerability in Intel Unison Software 20.14.2.3053/20.14.4244 Incomplete cleanup for some Intel Unison software may allow an authenticated user to potentially enable information disclosure via local access. | 5.5 |
| 2023-11-14 | CVE-2022-46298 | Incomplete Cleanup vulnerability in Intel Unison Software 20.14.2.3053/20.14.4244 Incomplete cleanup for some Intel Unison software may allow a privileged user to potentially enable denial of service via local access. | 4.4 |
| 2023-07-13 | CVE-2023-35945 | Incomplete Cleanup vulnerability in multiple products Envoy is a cloud-native high-performance edge/middle/service proxy. | 7.5 |