Vulnerabilities > Information Exposure Through Log Files

DATE CVE VULNERABILITY TITLE RISK
2023-02-07 CVE-2023-24827 Information Exposure Through Log Files vulnerability in Anchore Syft 0.69.0/0.69.1
syft is a a CLI tool and Go library for generating a Software Bill of Materials (SBOM) from container images and filesystems.
network
low complexity
anchore CWE-532
7.5
2023-02-06 CVE-2022-42439 Information Exposure Through Log Files vulnerability in IBM products
IBM App Connect Enterprise 11.0.0.17 through 11.0.0.19 and 12.0.4.0 and 12.0.5.0 contains an unspecified vulnerability in the Discovery Connector nodes which may cause a 3rd party system’s credentials to be exposed to a privileged attacker.
network
low complexity
ibm CWE-532
4.9
2023-02-03 CVE-2021-36544 Information Exposure Through Log Files vulnerability in Tpcms Project Tpcms 3.2
Incorrect Access Control issue discovered in tpcms 3.2 allows remote attackers to view sensitive information via path in application URL.
network
low complexity
tpcms-project CWE-532
7.5
2023-02-01 CVE-2023-22573 Information Exposure Through Log Files vulnerability in Dell EMC Powerscale Onefs
Dell PowerScale OneFS 9.0.0.x-9.4.0.x contain an insertion of sensitive information into log file vulnerability in cloudpool.
local
low complexity
dell CWE-532
5.5
2023-02-01 CVE-2023-22574 Information Exposure Through Log Files vulnerability in Dell EMC Powerscale Onefs
Dell PowerScale OneFS 9.0.0.x - 9.4.0.x contain an insertion of sensitive information into log file vulnerability in platform API of IPMI module.
network
low complexity
dell CWE-532
8.1
2023-02-01 CVE-2023-22575 Information Exposure Through Log Files vulnerability in Dell EMC Powerscale Onefs
Dell PowerScale OneFS 9.0.0.x - 9.4.0.x contain an insertion of sensitive information into log file vulnerability in celog.
network
low complexity
dell CWE-532
8.8
2023-02-01 CVE-2023-22572 Information Exposure Through Log Files vulnerability in Dell EMC Powerscale Onefs
Dell PowerScale OneFS 9.1.0.x-9.4.0.x contain an insertion of sensitive information into log file vulnerability in change password api.
local
low complexity
dell CWE-532
7.8
2023-01-26 CVE-2022-20458 Information Exposure Through Log Files vulnerability in Google Android 12.1
The logs of sensitive information (PII) or hardware identifier should only be printed in Android "userdebug" or "eng" build.
local
low complexity
google CWE-532
5.5
2022-12-30 CVE-2022-4858 Information Exposure Through Log Files vulnerability in M-Files Server 22.2.11051.0/22.3.11237.3/22.6.11534.4
Insertion of Sensitive Information into Log Files in M-Files Server before 22.10.11846.0 could allow to obtain sensitive tokens from logs, if specific configurations were set.
network
low complexity
m-files CWE-532
7.5
2022-12-19 CVE-2022-43887 Information Exposure Through Log Files vulnerability in IBM Cognos Analytics
IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 could be vulnerable to sensitive information exposure by passing API keys to log files.
network
low complexity
ibm CWE-532
5.3