Vulnerabilities > Information Exposure Through Log Files
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-06-04 | CVE-2020-11094 | Information Exposure Through Log Files vulnerability in Octobercms Debugbar The October CMS debugbar plugin before version 3.1.0 contains a feature where it will log all requests (and all information pertaining to each request including session data) whenever it is enabled. | 9.8 |
| 2020-06-03 | CVE-2020-3281 | Information Exposure Through Log Files vulnerability in Cisco Digital Network Architecture Center A vulnerability in the audit logging component of Cisco Digital Network Architecture (DNA) Center could allow an authenticated, remote attacker to view sensitive information in clear text. | 8.8 |
| 2020-05-29 | CVE-2020-7654 | Information Exposure Through Log Files vulnerability in Synk Broker All versions of snyk-broker before 4.73.1 are vulnerable to Information Exposure. | 7.5 |
| 2020-05-13 | CVE-2020-2004 | Information Exposure Through Log Files vulnerability in Paloaltonetworks Globalprotect Under certain circumstances a user's password may be logged in cleartext in the PanGPS.log diagnostic file when logs are collected for troubleshooting on GlobalProtect app (also known as GlobalProtect Agent) for MacOS and Windows. | 5.5 |
| 2020-05-13 | CVE-2020-11932 | Information Exposure Through Log Files vulnerability in Canonical Subiquity It was discovered that the Subiquity installer for Ubuntu Server logged the LUKS full disk encryption password if one was entered. | 2.3 |
| 2020-05-11 | CVE-2020-1698 | Information Exposure Through Log Files vulnerability in Redhat Keycloak A flaw was found in keycloak in versions before 9.0.0. | 5.5 |
| 2020-04-29 | CVE-2019-4286 | Information Exposure Through Log Files vulnerability in IBM Maximo Anywhere IBM Maximo Anywhere 7.6.2.0, 7.6.2.1, 7.6.3.0, and 7.6.3.1 could disclose highly senstiive user information to an authenticated user with physical access to the device. | 4.3 |
| 2020-04-21 | CVE-2020-11968 | Information Exposure Through Log Files vulnerability in Evenroute Iqrouter Firmware 3.3.1 In the web-panel in IQrouter through 3.3.1, remote attackers can read system logs because of Incorrect Access Control. | 7.5 |
| 2020-04-14 | CVE-2020-6224 | Information Exposure Through Log Files vulnerability in SAP Netweaver Application Server Java SAP NetWeaver AS Java (HTTP Service), versions 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, allows an attacker with administrator privileges to access user sensitive data such as passwords in trace files, when the user logs in and sends request with login credentials, leading to Information Disclosure. | 6.2 |
| 2020-04-08 | CVE-2020-1624 | Information Exposure Through Log Files vulnerability in Juniper Junos OS Evolved 18.3/19.1 A local, authenticated user with shell can obtain the hashed values of login passwords and shared secrets via raw objmon configuration files. | 5.5 |