Vulnerabilities > Information Exposure Through Log Files
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-10-08 | CVE-2024-9621 | A vulnerability was found in Quarkus CXF. | 5.3 |
| 2024-10-02 | CVE-2024-20490 | Information Exposure Through Log Files vulnerability in Cisco products A vulnerability in a logging function of Cisco Nexus Dashboard Fabric Controller (NDFC) and Cisco Nexus Dashboard Orchestrator (NDO) could allow an attacker with access to a tech support file to view sensitive information. This vulnerability exists because HTTP proxy credentials could be recorded in an internal log that is stored in the tech support file. | 8.6 |
| 2024-10-02 | CVE-2024-20491 | Information Exposure Through Log Files vulnerability in Cisco products A vulnerability in a logging function of Cisco Nexus Dashboard Insights could allow an attacker with access to a tech support file to view sensitive information. This vulnerability exists because remote controller credentials are recorded in an internal log that is stored in the tech support file. | 8.6 |
| 2024-09-27 | CVE-2024-8609 | Information Exposure Through Log Files vulnerability in Oceanicsoft Valeapp Insertion of Sensitive Information into Log File vulnerability in Oceanic Software ValeApp allows Query System for Information.This issue affects ValeApp: before v2.0.0. | 7.5 |
| 2024-09-26 | CVE-2022-49037 | Information Exposure Through Log Files vulnerability in Synology Drive Client Insertion of sensitive information into log file vulnerability in proxy settings component in Synology Drive Client before 3.3.0-15082 allows remote authenticated users to obtain sensitive information via unspecified vectors. | 6.5 |
| 2024-09-25 | CVE-2024-47083 | Information Exposure Through Log Files vulnerability in Microsoft Power Platform Terraform Provider Power Platform Terraform Provider allows managing environments and other resources within Power Platform. | 7.5 |
| 2024-09-25 | CVE-2024-7421 | Information Exposure Through Log Files vulnerability in Devolutions Remote Desktop Manager An information exposure in Devolutions Remote Desktop Manager 2024.2.20.0 and earlier on Windows allows local attackers with access to system logs to obtain session credentials via passwords included in command-line arguments when launching WinSCP sessions | 5.5 |
| 2024-09-17 | CVE-2024-40791 | Information Exposure Through Log Files vulnerability in Apple Macos A privacy issue was addressed with improved private data redaction for log entries. | 3.3 |
| 2024-09-17 | CVE-2024-44166 | Information Exposure Through Log Files vulnerability in Apple Macos A privacy issue was addressed with improved private data redaction for log entries. | 5.5 |
| 2024-09-12 | CVE-2024-4472 | Information Exposure Through Log Files vulnerability in Gitlab An issue was discovered in GitLab CE/EE affecting all versions starting from 16.5 prior to 17.1.7, starting from 17.2 prior to 17.2.5, and starting from 17.3 prior to 17.3.2, where dependency proxy credentials are retained in graphql Logs. | 5.5 |