Vulnerabilities > Information Exposure Through Log Files

DATE CVE VULNERABILITY TITLE RISK
2019-10-15 CVE-2019-17397 Information Exposure Through Log Files vulnerability in Doordash 11.0.2/11.5.2
In the DoorDash application through 11.5.2 for Android, the username and password are stored in the log during authentication, and may be available to attackers via logcat.
network
low complexity
doordash CWE-532
5.0
2019-10-14 CVE-2019-14858 Information Exposure Through Log Files vulnerability in Redhat Ansible Engine
A vulnerability was found in Ansible engine 2.x up to 2.8 and Ansible tower 3.x up to 3.5.
local
low complexity
redhat CWE-532
2.1
2019-10-14 CVE-2019-4572 Information Exposure Through Log Files vulnerability in IBM Filenet Content Manager 5.5.2/5.5.3
IBM FileNet Content Manager 5.5.2 and 5.5.3 in specific configurations, could log the web service user credentials into a log file that could be accessed by an administrator on the local machine.
local
low complexity
ibm CWE-532
2.1
2019-10-08 CVE-2019-0380 Information Exposure Through Log Files vulnerability in SAP Landscape Management 3.0
Under certain conditions, SAP Landscape Management enterprise edition, before version 3.0, allows custom secure parameters’ default values to be part of the application logs leading to Information Disclosure.
network
low complexity
sap CWE-532
4.0
2019-10-02 CVE-2019-10212 Information Exposure Through Log Files vulnerability in multiple products
A flaw was found in, all under 2.0.20, in the Undertow DEBUG log for io.undertow.request.security.
4.3
2019-10-02 CVE-2019-16116 Information Exposure Through Log Files vulnerability in Enterprisedt Completeftp Server
EnterpriseDT CompleteFTP Server prior to version 12.1.3 is vulnerable to information exposure in the Bootstrap.log file.
3.5
2019-09-27 CVE-2019-9277 Information Exposure Through Log Files vulnerability in Google Android 10.0
In the proc filesystem, there is a possible information disclosure due to log information disclosure.
local
low complexity
google CWE-532
2.1
2019-09-25 CVE-2019-6656 Information Exposure Through Log Files vulnerability in F5 products
BIG-IP APM Edge Client before version 7.1.8 (7180.2019.508.705) logs the full apm session ID in the log files.
network
low complexity
f5 CWE-532
7.5
2019-09-18 CVE-2019-5532 Information Exposure Through Log Files vulnerability in VMWare Vcenter Server 6.0/6.5/6.7
VMware vCenter Server (6.7.x prior to 6.7 U3, 6.5 prior to 6.5 U3 and 6.0 prior to 6.0 U3j) contains an information disclosure vulnerability due to the logging of credentials in plain-text for virtual machines deployed through OVF.
network
low complexity
vmware CWE-532
4.0
2019-09-11 CVE-2019-3763 Information Exposure Through Log Files vulnerability in Dell products
The RSA Identity Governance and Lifecycle software and RSA Via Lifecycle and Governance products prior to 7.1.0 P08 contain an information exposure vulnerability.
local
low complexity
dell CWE-532
2.1