Vulnerabilities > Information Exposure Through Log Files
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-10-04 | CVE-2021-39900 | Information Exposure Through Log Files vulnerability in Gitlab Information disclosure from SendEntry in GitLab starting with 10.8 allowed exposure of full URL of artifacts stored in object-storage with a temporary availability via Rails logs. | 2.7 |
| 2021-09-24 | CVE-2021-39246 | Information Exposure Through Log Files vulnerability in Torproject TOR Browser Tor Browser through 10.5.6 and 11.x through 11.0a4 allows a correlation attack that can compromise the privacy of visits to v2 onion addresses. | 6.1 |
| 2021-09-14 | CVE-2021-23046 | Information Exposure Through Log Files vulnerability in F5 Big-Ip Access Policy Manager On all versions of Guided Configuration before 8.0.0, when a configuration that contains secure properties is created and deployed from Access Guided Configuration (AGC), secure properties are logged in restnoded logs. | 4.9 |
| 2021-09-09 | CVE-2021-32724 | Information Exposure Through Log Files vulnerability in Check-Spelling check-spelling is a github action which provides CI spell checking. | 9.9 |
| 2021-09-07 | CVE-2021-32801 | Information Exposure Through Log Files vulnerability in Nextcloud Server Nextcloud server is an open source, self hosted personal cloud. | 5.5 |
| 2021-09-07 | CVE-2021-27022 | Information Exposure Through Log Files vulnerability in Puppet and Puppet Enterprise A flaw was discovered in bolt-server and ace where running a task with sensitive parameters results in those sensitive parameters being logged when they should not be. | 4.9 |
| 2021-08-31 | CVE-2021-22929 | Information Exposure Through Log Files vulnerability in Brave An information disclosure exists in Brave Browser Desktop prior to version 1.28.62, where logged warning messages that included timestamps of connections to V2 onion domains in tor.log. | 6.1 |
| 2021-08-30 | CVE-2021-22024 | Information Exposure Through Log Files vulnerability in VMWare products The vRealize Operations Manager API (8.x prior to 8.5) contains an arbitrary log-file read vulnerability. | 7.5 |
| 2021-08-30 | CVE-2021-27019 | Information Exposure Through Log Files vulnerability in Puppet Enterprise and Puppetdb PuppetDB logging included potentially sensitive system information. | 4.3 |
| 2021-08-23 | CVE-2021-39291 | Information Exposure Through Log Files vulnerability in Netmodule Router Software 4.3.0.0/4.4.0.0 Certain NetModule devices allow credentials via GET parameters to CLI-PHP. | 8.8 |