Vulnerabilities > Information Exposure Through Log Files
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-05-09 | CVE-2022-28161 | Information Exposure Through Log Files vulnerability in Brocade Sannav An information exposure through log file vulnerability in Brocade SANNav versions before Brocade SANnav 2.2.0 could allow an authenticated, local attacker to view sensitive information such as ssh passwords in filetansfer.log in debug mode. | 1.9 |
| 2022-05-05 | CVE-2022-27636 | Information Exposure Through Log Files vulnerability in F5 products On F5 BIG-IP APM 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5.1, 14.1.x versions prior to 14.1.4.6, 13.1.x versions prior to 13.1.5, and all versions of 12.1.x and 11.6.x, as well as F5 BIG-IP APM Clients 7.x versions prior to 7.2.1.5, BIG-IP Edge Client may log sensitive APM session-related information when VPN is launched on a Windows system. | 5.5 |
| 2022-05-05 | CVE-2022-28859 | Information Exposure Through Log Files vulnerability in F5 products On F5 BIG-IP 15.1.x versions prior to 15.1.5.1 and 14.1.x versions prior to 14.1.4.6, when installing Net HSM, the scripts (nethsm-safenet-install.sh and nethsm-thales-install.sh) expose the Net HSM partition password. | 4.0 |
| 2022-04-28 | CVE-2022-29869 | Information Exposure Through Log Files vulnerability in multiple products cifs-utils through 6.14, with verbose logging, can cause an information leak when a file contains = (equal sign) characters but is not a valid credentials file. | 5.3 |
| 2022-04-27 | CVE-2021-38939 | Information Exposure Through Log Files vulnerability in IBM Qradar Security Information and Event Manager IBM QRadar SIEM 7.3, 7.4, and 7.5 stores potentially sensitive information in log files that could be read by an user with access to creating domains. | 5.0 |
| 2022-04-27 | CVE-2022-29810 | Information Exposure Through Log Files vulnerability in Hashicorp Go-Getter The Hashicorp go-getter library before 1.5.11 does not redact an SSH key from a URL query parameter. | 5.5 |
| 2022-04-26 | CVE-2022-27888 | Information Exposure Through Log Files vulnerability in Palantir Foundry Issues Foundry Issues service versions 2.244.0 to 2.249.0 was found to be logging in a manner that captured sensitive information (session tokens). | 2.1 |
| 2022-04-21 | CVE-2022-24875 | Information Exposure Through Log Files vulnerability in CVE Cve-Services The CVEProject/cve-services is an open source project used to operate the CVE services api. | 5.0 |
| 2022-04-15 | CVE-2022-26907 | Information Exposure Through Log Files vulnerability in Microsoft Azure SDK for .Net Azure SDK for .NET Information Disclosure Vulnerability | 5.3 |
| 2022-04-11 | CVE-2022-1157 | Information Exposure Through Log Files vulnerability in Gitlab Missing sanitization of logged exception messages in all versions prior to 14.7.7, 14.8 prior to 14.8.5, and 14.9 prior to 14.9.2 of GitLab CE/EE causes potential sensitive values in invalid URLs to be logged | 3.5 |