Vulnerabilities > Information Exposure Through Log Files

DATE CVE VULNERABILITY TITLE RISK
2019-11-26 CVE-2019-11290 Information Exposure Through Log Files vulnerability in Cloudfoundry Cf-Deployment
Cloud Foundry UAA Release, versions prior to v74.8.0, logs all query parameters to tomcat’s access file.
network
low complexity
cloudfoundry CWE-532
7.5
2019-11-21 CVE-2019-19039 Information Exposure Through Log Files vulnerability in multiple products
__btrfs_free_extent in fs/btrfs/extent-tree.c in the Linux kernel through 5.3.12 calls btrfs_print_leaf in a certain ENOENT case, which allows local users to obtain potentially sensitive information about register values via the dmesg program.
local
low complexity
linux debian canonical CWE-532
5.5
2019-11-15 CVE-2019-6662 Information Exposure Through Log Files vulnerability in F5 products
On BIG-IP 13.1.0-13.1.1.4, sensitive information is logged into the local log files and/or remote logging targets when restjavad processes an invalid request.
network
low complexity
f5 CWE-532
6.5
2019-11-14 CVE-2012-1156 Information Exposure Through Log Files vulnerability in multiple products
Moodle before 2.2.2 has users' private files included in course backups
network
low complexity
moodle fedoraproject redhat CWE-532
7.5
2019-11-13 CVE-2019-3649 Information Exposure Through Log Files vulnerability in Mcafee Advanced Threat Defense
Information Disclosure vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows remote authenticated attackers to gain access to hashed credentials via carefully constructed POST request extracting incorrectly recorded data from log files.
network
low complexity
mcafee CWE-532
6.5
2019-11-07 CVE-2013-1771 Information Exposure Through Log Files vulnerability in Monkey-Project Monkey
The web server Monkeyd produces a world-readable log (/var/log/monkeyd/master.log) on gentoo.
network
low complexity
monkey-project CWE-532
7.5
2019-10-23 CVE-2019-18385 Information Exposure Through Log Files vulnerability in Terra-Master Fs-210 Firmware 4.0.19
An issue was discovered on TerraMaster FS-210 4.0.19 devices.
network
low complexity
terra-master CWE-532
7.5
2019-10-23 CVE-2019-11283 Information Exposure Through Log Files vulnerability in multiple products
Cloud Foundry SMB Volume, versions prior to v2.0.3, accidentally outputs sensitive information to the logs.
network
low complexity
cloudfoundry pivotal-software CWE-532
8.8
2019-10-15 CVE-2019-17395 Information Exposure Through Log Files vulnerability in Rapidgator 0.7.1
In the Rapid Gator application 0.7.1 for Android, the username and password are stored in the log during authentication, and may be available to attackers via logcat.
network
low complexity
rapidgator CWE-532
critical
9.8
2019-10-15 CVE-2019-17398 Information Exposure Through Log Files vulnerability in Darkhorse Dark Horse Comics 1.3.21
In the Dark Horse Comics application 1.3.21 for Android, token information (equivalent to the username and password) is stored in the log during authentication, and may be available to attackers via logcat.
network
low complexity
darkhorse CWE-532
critical
9.8