Vulnerabilities > Information Exposure Through Log Files
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-03-08 | CVE-2021-41543 | Information Exposure Through Log Files vulnerability in Siemens Climatix Pol909 Firmware 11.34/11.42 A vulnerability has been identified in Climatix POL909 (AWB module) (All versions < V11.44), Climatix POL909 (AWM module) (All versions < V11.36). | 6.5 |
| 2022-03-07 | CVE-2021-25009 | Information Exposure Through Log Files vulnerability in Correosexpress Project Correosexpress The CorreosExpress WordPress plugin through 2.6.0 generates log files which are publicly accessible, and contain sensitive information such as sender/receiver names, phone numbers, physical and email addresses | 5.3 |
| 2022-02-25 | CVE-2022-25374 | Information Exposure Through Log Files vulnerability in Hashicorp Terraform Enterprise HashiCorp Terraform Enterprise v202112-1, v202112-2, v202201-1, and v202201-2 were configured to log inbound HTTP requests in a manner that may capture sensitive data. | 7.5 |
| 2022-02-10 | CVE-2022-0021 | Information Exposure Through Log Files vulnerability in Paloaltonetworks Globalprotect An information exposure through log file vulnerability exists in the Palo Alto Networks GlobalProtect app on Windows that logs the cleartext credentials of the connecting GlobalProtect user when authenticating using Connect Before Logon feature. | 5.5 |
| 2022-02-10 | CVE-2022-20630 | Information Exposure Through Log Files vulnerability in Cisco DNA Center A vulnerability in the audit log of Cisco DNA Center could allow an authenticated, local attacker to view sensitive information in clear text. | 4.4 |
| 2022-02-04 | CVE-2022-22939 | Information Exposure Through Log Files vulnerability in VMWare Cloud Foundation VMware Cloud Foundation contains an information disclosure vulnerability due to logging of credentials in plain-text within multiple log files on the SDDC Manager. | 4.9 |
| 2022-01-25 | CVE-2021-36289 | Information Exposure Through Log Files vulnerability in Dell EMC Unity Operating Environment Dell VNX2 OE for File versions 8.1.21.266 and earlier, contain a sensitive information disclosure vulnerability. | 7.8 |
| 2022-01-25 | CVE-2022-0338 | Information Exposure Through Log Files vulnerability in Loguru Project Loguru Insertion of Sensitive Information into Log File in Conda loguru prior to 0.5.3. | 4.3 |
| 2022-01-18 | CVE-2021-41808 | Information Exposure Through Log Files vulnerability in M-Files Server In M-Files Server product with versions before 21.11.10775.0, enabling logging of Federated authentication to event log wrote sensitive information to log. | 2.3 |
| 2022-01-17 | CVE-2022-22703 | Information Exposure Through Log Files vulnerability in Stormshield Network Security 2.0.0/3.0.0 In Stormshield SSO Agent 2.x before 2.1.1 and 3.x before 3.0.2, the cleartext user password and PSK are contained in the log file of the .exe installer. | 5.5 |