Vulnerabilities > Information Exposure Through Log Files

DATE CVE VULNERABILITY TITLE RISK
2024-05-03 CVE-2024-28072 A highly privileged account can overwrite arbitrary files on the system with log output.
low complexity
CWE-532
5.7
2024-04-10 CVE-2024-31353 Information Exposure Through Log Files vulnerability in Tribulant Slideshow Gallery
Insertion of Sensitive Information into Log File vulnerability in Tribulant Slideshow Gallery.This issue affects Slideshow Gallery: from n/a through 1.7.8.
network
low complexity
tribulant CWE-532
5.3
2024-03-27 CVE-2024-29945 Information Exposure Through Log Files vulnerability in Splunk
In Splunk Enterprise versions below 9.2.1, 9.1.4, and 9.0.9, the software potentially exposes authentication tokens during the token validation process.
network
low complexity
splunk CWE-532
7.2
2024-03-21 CVE-2024-22352 Information Exposure Through Log Files vulnerability in IBM Infosphere Information Server 11.7
IBM InfoSphere Information Server 11.7 stores potentially sensitive information in log files that could be read by a local user.
local
low complexity
ibm CWE-532
5.5
2024-02-12 CVE-2024-23760 Information Exposure Through Log Files vulnerability in Gambio 4.9.2.0
Cleartext Storage of Sensitive Information in Gambio 4.9.2.0 allows attackers to obtain sensitive information via error-handler.log.json and legacy-error-handler.log.txt under the webroot.
network
low complexity
gambio CWE-532
2.7
2024-02-08 CVE-2023-47131 Information Exposure Through Log Files vulnerability in N-Able Passportal
The N-able PassPortal extension before 3.29.2 for Chrome inserts sensitive information into a log file.
network
low complexity
n-able CWE-532
7.5
2024-02-08 CVE-2024-22464 Information Exposure Through Log Files vulnerability in Dell EMC Appsync
Dell EMC AppSync, versions from 4.2.0.0 to 4.6.0.0 including all Service Pack releases, contain an exposure of sensitive information vulnerability in AppSync server logs.
network
low complexity
dell CWE-532
6.8
2024-02-07 CVE-2024-23448 Information Exposure Through Log Files vulnerability in Elastic APM Server
An issue was discovered whereby APM Server could log at ERROR level, a response from Elasticsearch indicating that indexing the document failed and that response would contain parts of the original document.
network
low complexity
elastic CWE-532
7.5
2024-02-06 CVE-2024-24939 Information Exposure Through Log Files vulnerability in Jetbrains Rider
In JetBrains Rider before 2023.3.3 logging of environment variables containing secret values was possible
network
low complexity
jetbrains CWE-532
5.3
2024-02-01 CVE-2024-0935 Information Exposure Through Log Files vulnerability in 3DS Delmia Apriso 2019/2022/2024
Insertion of Sensitive Information into Log File vulnerabilities are affecting DELMIA Apriso Release 2019 through Release 2024
network
low complexity
3ds CWE-532
7.5