Vulnerabilities > Information Exposure Through Log Files
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-03-26 | CVE-2018-16856 | Information Exposure Through Log Files vulnerability in multiple products In a default Red Hat Openstack Platform Director installation, openstack-octavia before versions openstack-octavia 2.0.2-5 and openstack-octavia-3.0.1-0.20181009115732 creates log files that are readable by all users. | 7.5 |
| 2019-03-25 | CVE-2019-7612 | Information Exposure Through Log Files vulnerability in multiple products A sensitive data disclosure flaw was found in the way Logstash versions before 5.6.15 and 6.6.1 logs malformed URLs. | 9.8 |
| 2019-03-21 | CVE-2018-19513 | Information Exposure Through Log Files vulnerability in ENS Webgalamb 6.0/7.0 In Webgalamb through 7.0, log files are exposed to the internet with predictable files/logs/sql_error_log/YYYY-MM-DD-sql_error_log.log filenames. | 7.5 |
| 2019-03-21 | CVE-2018-18466 | Information Exposure Through Log Files vulnerability in Securenvoy Securaccess 9.3.502 An issue was discovered in SecurEnvoy SecurAccess 9.3.502. | 7.0 |
| 2019-03-13 | CVE-2019-3716 | Information Exposure Through Log Files vulnerability in RSA Archer GRC Platform RSA Archer versions, prior to 6.5 SP2, contain an information exposure vulnerability. | 7.8 |
| 2019-03-13 | CVE-2019-3715 | Information Exposure Through Log Files vulnerability in RSA Archer GRC Platform RSA Archer versions, prior to 6.5 SP1, contain an information exposure vulnerability. | 5.5 |
| 2019-03-05 | CVE-2019-0741 | Information Exposure Through Log Files vulnerability in Microsoft Java Software Development KIT An information disclosure vulnerability exists in the way Azure IoT Java SDK logs sensitive information, aka 'Azure IoT Java SDK Information Disclosure Vulnerability'. | 7.5 |
| 2019-02-20 | CVE-2019-8944 | Information Exposure Through Log Files vulnerability in Octopus Deploy An Information Exposure issue in the Terraform deployment step in Octopus Deploy before 2019.1.8 (and before 2018.10.4 LTS) allows remote authenticated users to view sensitive Terraform output variables via log files. | 6.5 |
| 2019-02-15 | CVE-2019-0266 | Information Exposure Through Log Files vulnerability in SAP Hana Extended Application Services 1.0 Under certain conditions SAP HANA Extended Application Services, version 1.0, advanced model (XS advanced) writes credentials of platform users to a trace file of the SAP HANA system. | 7.5 |
| 2019-02-07 | CVE-2019-4008 | Information Exposure Through Log Files vulnerability in IBM API Connect API Connect V2018.1 through 2018.4.1.1 is impacted by access token leak. | 9.8 |