Vulnerabilities > Information Management Errors

DATE CVE VULNERABILITY TITLE RISK
2019-08-01 CVE-2016-10841 Information Management Errors vulnerability in Cpanel
The bin/mkvhostspasswd script in cPanel before 11.54.0.4 discloses password hashes (SEC-73).
network
high complexity
cpanel CWE-199
2.1
2017-06-08 CVE-2016-5405 Information Management Errors vulnerability in Redhat products
389 Directory Server in Red Hat Enterprise Linux Desktop 6 through 7, Red Hat Enterprise Linux HPC Node 6 through 7, Red Hat Enterprise Linux Server 6 through 7, and Red Hat Enterprise Linux Workstation 6 through 7 allows remote attackers to obtain user passwords.
network
low complexity
redhat CWE-199
critical
9.8
2016-10-25 CVE-2016-5486 Information Management Errors vulnerability in Oracle SUN ZFS Storage Appliance KIT Ak2013
Unspecified vulnerability in the Sun ZFS Storage Appliance Kit (AK) component in Oracle Sun Systems Products Suite AK 2013 allows local users to affect confidentiality via vectors related to Core Services.
local
low complexity
oracle CWE-199
4.9
2016-04-12 CVE-2015-8346 Information Management Errors vulnerability in multiple products
app/views/timelog/_form.html.erb in Redmine before 2.6.8, 3.0.x before 3.0.6, and 3.1.x before 3.1.2 allows remote attackers to obtain sensitive information about subjects of issues by viewing the time logging form.
network
low complexity
redmine debian CWE-199
5.0
2014-12-11 CVE-2014-1591 Information Management Errors vulnerability in Mozilla Firefox and Seamonkey
Mozilla Firefox 33.0 and SeaMonkey before 2.31 include path strings in CSP violation reports, which allows remote attackers to obtain sensitive information via a web site that receives a report after a redirect.
network
mozilla CWE-199
4.3