Vulnerabilities > Information Exposure Through Log Files

DATE CVE VULNERABILITY TITLE RISK
2022-06-03 CVE-2021-43271 Information Exposure Through Log Files vulnerability in Riverbed Appresponse
Riverbed AppResponse 11.8.0, 11.8.5, 11.8.5a, 11.9.0, 11.9.0a, 11.10.0, 11.11.0, 11.11.0a, 11.11.1, 11.11.1a, 11.11.5, and 11.11.5a (when configured to use local, RADIUS, or TACACS authentication) logs usernames and passwords if either is entered incorrectly.
network
low complexity
riverbed CWE-532
6.8
2022-05-27 CVE-2022-20806 Information Exposure Through Log Files vulnerability in Cisco Telepresence Video Communication Server
Multiple vulnerabilities in the API and web-based management interfaces of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) could allow an authenticated, remote attacker to write files or disclose sensitive information on an affected device.
network
low complexity
cisco CWE-532
7.1
2022-05-27 CVE-2022-20807 Information Exposure Through Log Files vulnerability in Cisco Telepresence Video Communication Server
Multiple vulnerabilities in the API and web-based management interfaces of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) could allow an authenticated, remote attacker to write files or disclose sensitive information on an affected device.
network
low complexity
cisco CWE-532
6.5
2022-05-26 CVE-2022-20809 Information Exposure Through Log Files vulnerability in Cisco Telepresence Video Communication Server
Multiple vulnerabilities in the API and web-based management interfaces of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) could allow an authenticated, remote attacker to write files or disclose sensitive information on an affected device.
network
low complexity
cisco CWE-532
6.5
2022-05-12 CVE-2022-29928 Information Exposure Through Log Files vulnerability in Jetbrains Teamcity
In JetBrains TeamCity before 2022.04 leak of secrets in TeamCity agent logs was possible
network
low complexity
jetbrains CWE-532
4.9
2022-05-09 CVE-2022-28161 Information Exposure Through Log Files vulnerability in Brocade Sannav
An information exposure through log file vulnerability in Brocade SANNav versions before Brocade SANnav 2.2.0 could allow an authenticated, local attacker to view sensitive information such as ssh passwords in filetansfer.log in debug mode.
local
low complexity
brocade CWE-532
5.5
2022-05-05 CVE-2022-27636 Information Exposure Through Log Files vulnerability in F5 products
On F5 BIG-IP APM 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5.1, 14.1.x versions prior to 14.1.4.6, 13.1.x versions prior to 13.1.5, and all versions of 12.1.x and 11.6.x, as well as F5 BIG-IP APM Clients 7.x versions prior to 7.2.1.5, BIG-IP Edge Client may log sensitive APM session-related information when VPN is launched on a Windows system.
local
low complexity
f5 CWE-532
5.5
2022-04-28 CVE-2022-29869 Information Exposure Through Log Files vulnerability in multiple products
cifs-utils through 6.14, with verbose logging, can cause an information leak when a file contains = (equal sign) characters but is not a valid credentials file.
network
low complexity
samba fedoraproject debian CWE-532
5.3
2022-04-27 CVE-2021-38939 Information Exposure Through Log Files vulnerability in IBM Qradar Security Information and Event Manager
IBM QRadar SIEM 7.3, 7.4, and 7.5 stores potentially sensitive information in log files that could be read by an user with access to creating domains.
network
low complexity
ibm CWE-532
5.3
2022-04-27 CVE-2022-29810 Information Exposure Through Log Files vulnerability in Hashicorp Go-Getter
The Hashicorp go-getter library before 1.5.11 does not redact an SSH key from a URL query parameter.
local
low complexity
hashicorp CWE-532
5.5