Vulnerabilities > Information Exposure Through Log Files
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-02-09 | CVE-2018-1000060 | Information Exposure Through Log Files vulnerability in Sensu Core Sensu, Inc. | 5.0 |
| 2018-01-24 | CVE-2018-1000018 | Information Exposure Through Log Files vulnerability in Ovirt Ovirt-Hosted-Engine-Setup An information disclosure in ovirt-hosted-engine-setup prior to 2.2.7 reveals the root user's password in the log file. | 2.1 |
| 2018-01-14 | CVE-2018-5693 | Information Exposure Through Log Files vulnerability in Linuxmagic Magicspam The LinuxMagic MagicSpam extension before 2.0.14-1 for Plesk allows local users to discover mailbox names by reading /var/log/magicspam/mslog. | 2.1 |
| 2018-01-04 | CVE-2017-1727 | Information Exposure Through Log Files vulnerability in IBM Security KEY Lifecycle Manager IBM Tivoli Key Lifecycle Manager 2.5, 2.6, and 2.7 discloses sensitive information in error messages that could aid an attacker in further attacks against the system. | 4.0 |
| 2017-12-21 | CVE-2017-6139 | Information Exposure Through Log Files vulnerability in F5 Big-Ip Access Policy Manager 12.1.2/13.0.0 In F5 BIG-IP APM software version 13.0.0 and 12.1.2, under rare conditions, the BIG-IP APM system appends log details when responding to client requests. | 4.3 |
| 2017-11-28 | CVE-2017-8001 | Information Exposure Through Log Files vulnerability in Dell EMC Scaleio An issue was discovered in EMC ScaleIO 2.0.1.x. | 2.1 |
| 2017-11-25 | CVE-2017-16946 | Information Exposure Through Log Files vulnerability in Misp 2.4.82 The admin_edit function in app/Controller/UsersController.php in MISP 2.4.82 mishandles the enable_password field, which allows admins to discover a hashed password by reading the audit log. | 4.0 |
| 2017-11-21 | CVE-2017-7550 | Information Exposure Through Log Files vulnerability in Redhat Ansible and Enterprise Linux Server A flaw was found in the way Ansible (2.3.x before 2.3.3, and 2.4.x before 2.4.1) passed certain parameters to the jenkins_plugin module. | 9.8 |
| 2017-11-03 | CVE-2017-1000171 | Information Exposure Through Log Files vulnerability in Mahara Mobile 1.2.0 Mahara Mobile before 1.2.1 is vulnerable to passwords being sent to the Mahara access log in plain text. | 5.0 |
| 2017-10-26 | CVE-2017-15366 | Information Exposure Through Log Files vulnerability in Ndocsoftware Ndoc 7.4 Before Thornberry NDoc version 8.0, laptop clients and the server have default database (Cache) users set up with a single password. | 10.0 |