Vulnerabilities > Information Exposure Through Log Files
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-07-13 | CVE-2023-3363 | Information Exposure Through Log Files vulnerability in Gitlab An information disclosure issue in Gitlab CE/EE affecting all versions from 13.6 prior to 15.11.10, all versions from 16.0 prior to 16.0.6, all versions from 16.1 prior to 16.1.1, resulted in the Sidekiq log including webhook tokens when the log format was set to `default`. | 3.8 |
| 2023-06-26 | CVE-2023-35695 | Information Exposure Through Log Files vulnerability in Trendmicro Mobile Security 9.8 A remote attacker could leverage a vulnerability in Trend Micro Mobile Security (Enterprise) 9.8 SP5 to download a particular log file which may contain sensitive information regarding the product. | 7.5 |
| 2023-06-23 | CVE-2023-32392 | Information Exposure Through Log Files vulnerability in Apple products A privacy issue was addressed with improved private data redaction for log entries. | 5.5 |
| 2023-06-16 | CVE-2023-20885 | Information Exposure Through Log Files vulnerability in Pivotal products Vulnerability in Cloud Foundry Notifications, Cloud Foundry SMB-volume release, Cloud FOundry cf-nfs-volume release.This issue affects Notifications: All versions prior to 63; SMB-volume release: All versions prior to 3.1.19; cf-nfs-volume release: 5.0.X versions prior to 5.0.27, 7.1.X versions prior to 7.1.19. | 6.5 |
| 2023-06-13 | CVE-2023-26207 | Information Exposure Through Log Files vulnerability in Fortinet Fortios and Fortiproxy An insertion of sensitive information into log file vulnerability in Fortinet FortiOS 7.2.0 through 7.2.4 and FortiProxy 7.0.0 through 7.0.10. | 6.5 |
| 2023-06-07 | CVE-2023-2878 | Information Exposure Through Log Files vulnerability in Kubernetes Secrets-Store-Csi-Driver Kubernetes secrets-store-csi-driver in versions before 1.3.3 discloses service account tokens in logs. | 5.5 |
| 2023-05-31 | CVE-2023-28351 | Information Exposure Through Log Files vulnerability in Faronics Insight 10.0.19045 An issue was discovered in Faronics Insight 10.0.19045 on Windows. | 3.3 |
| 2023-05-22 | CVE-2022-0010 | Information Exposure Through Log Files vulnerability in ABB products Insertion of Sensitive Information into Log File vulnerability in ABB QCS 800xA, ABB QCS AC450, ABB Platform Engineering Tools. An attacker, who already has local access to the QCS nodes, could successfully obtain the password for a system user account. | 5.5 |
| 2023-05-16 | CVE-2023-33001 | Information Exposure Through Log Files vulnerability in Jenkins Hashicorp Vault Jenkins HashiCorp Vault Plugin 360.v0a_1c04cf807d and earlier does not properly mask (i.e., replace with asterisks) credentials in the build log when push mode for durable task logging is enabled. | 7.5 |
| 2023-05-12 | CVE-2023-2514 | Information Exposure Through Log Files vulnerability in Mattermost Mattermost Sever fails to redact the DB username and password before emitting an application log during server initialization. | 7.5 |