Vulnerabilities > Information Management Errors
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-08-01 | CVE-2016-10841 | Information Management Errors vulnerability in Cpanel The bin/mkvhostspasswd script in cPanel before 11.54.0.4 discloses password hashes (SEC-73). | 2.1 |
| 2017-06-08 | CVE-2016-5405 | Information Management Errors vulnerability in Redhat products 389 Directory Server in Red Hat Enterprise Linux Desktop 6 through 7, Red Hat Enterprise Linux HPC Node 6 through 7, Red Hat Enterprise Linux Server 6 through 7, and Red Hat Enterprise Linux Workstation 6 through 7 allows remote attackers to obtain user passwords. | 9.8 |
| 2016-10-25 | CVE-2016-5486 | Information Management Errors vulnerability in Oracle SUN ZFS Storage Appliance KIT Ak2013 Unspecified vulnerability in the Sun ZFS Storage Appliance Kit (AK) component in Oracle Sun Systems Products Suite AK 2013 allows local users to affect confidentiality via vectors related to Core Services. | 4.9 |
| 2016-04-12 | CVE-2015-8346 | Information Management Errors vulnerability in multiple products app/views/timelog/_form.html.erb in Redmine before 2.6.8, 3.0.x before 3.0.6, and 3.1.x before 3.1.2 allows remote attackers to obtain sensitive information about subjects of issues by viewing the time logging form. | 5.0 |
| 2014-12-11 | CVE-2014-1595 | Information Management Errors vulnerability in Mozilla Firefox, Firefox ESR and Thunderbird Mozilla Firefox before 34.0, Firefox ESR 31.x before 31.3, and Thunderbird before 31.3 on Apple OS X 10.10 omit a CoreGraphics disable-logging action that is needed by jemalloc-based applications, which allows local users to obtain sensitive information by reading /tmp files, as demonstrated by credential information. | 2.1 |
| 2014-12-11 | CVE-2014-1591 | Information Management Errors vulnerability in Mozilla Firefox and Seamonkey Mozilla Firefox 33.0 and SeaMonkey before 2.31 include path strings in CSP violation reports, which allows remote attackers to obtain sensitive information via a web site that receives a report after a redirect. | 4.3 |