Vulnerabilities > Information Exposure Through Log Files
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-06-15 | CVE-2020-4477 | Information Exposure Through Log Files vulnerability in IBM Spectrum Protect Plus IBM Spectrum Protect Plus 10.1.0 through 10.1.5 discloses highly sensitive information in plain text in the virgo log file which could be used in further attacks against the system. | 6.5 |
| 2020-06-12 | CVE-2020-3930 | Information Exposure Through Log Files vulnerability in Geovision Gv-Gf192X Firmware 1.10 GeoVision Door Access Control device family improperly stores and controls access to system logs, any users can read these logs. | 3.3 |
| 2020-06-11 | CVE-2020-12023 | Information Exposure Through Log Files vulnerability in Philips Intellibridge Enterprise B.12 Philips IntelliBridge Enterprise (IBE), Versions B.12 and prior, IntelliBridge Enterprise system integration with SureSigns (VS4), EarlyVue (VS30) and IntelliVue Guardian (IGS). | 4.5 |
| 2020-06-10 | CVE-2020-13223 | Information Exposure Through Log Files vulnerability in Hashicorp Vault HashiCorp Vault and Vault Enterprise logged proxy environment variables that potentially included sensitive credentials. | 7.5 |
| 2020-06-06 | CVE-2020-13881 | Information Exposure Through Log Files vulnerability in multiple products In support.c in pam_tacplus 1.3.8 through 1.5.1, the TACACS+ shared secret gets logged via syslog if the DEBUG loglevel and journald are used. | 7.5 |
| 2020-06-04 | CVE-2020-13830 | Information Exposure Through Log Files vulnerability in Google Android 9.0 An issue was discovered on Samsung mobile devices with P(9.0) software. | 7.5 |
| 2020-06-04 | CVE-2020-11094 | Information Exposure Through Log Files vulnerability in Octobercms Debugbar The October CMS debugbar plugin before version 3.1.0 contains a feature where it will log all requests (and all information pertaining to each request including session data) whenever it is enabled. | 9.8 |
| 2020-06-03 | CVE-2020-3281 | Information Exposure Through Log Files vulnerability in Cisco Digital Network Architecture Center A vulnerability in the audit logging component of Cisco Digital Network Architecture (DNA) Center could allow an authenticated, remote attacker to view sensitive information in clear text. | 8.8 |
| 2020-05-29 | CVE-2020-7654 | Information Exposure Through Log Files vulnerability in Synk Broker All versions of snyk-broker before 4.73.1 are vulnerable to Information Exposure. | 7.5 |
| 2020-05-13 | CVE-2020-2004 | Information Exposure Through Log Files vulnerability in Paloaltonetworks Globalprotect Under certain circumstances a user's password may be logged in cleartext in the PanGPS.log diagnostic file when logs are collected for troubleshooting on GlobalProtect app (also known as GlobalProtect Agent) for MacOS and Windows. | 5.5 |