Vulnerabilities > Information Exposure Through Log Files
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-06-12 | CVE-2024-5908 | Information Exposure Through Log Files vulnerability in Paloaltonetworks Globalprotect A problem with the Palo Alto Networks GlobalProtect app can result in exposure of encrypted user credentials, used for connecting to GlobalProtect, in application logs. | 7.5 |
| 2024-06-06 | CVE-2024-0912 | Information Exposure Through Log Files vulnerability in Johnsoncontrols Software House C-Cure 9000 Siteserver 3.00.2 Under certain circumstances the Microsoft® Internet Information Server (IIS) used to host the C•CURE 9000 Web Server will log Microsoft Windows credential details within logs. | 4.2 |
| 2024-03-27 | CVE-2024-29945 | Information Exposure Through Log Files vulnerability in Splunk In Splunk Enterprise versions below 9.2.1, 9.1.4, and 9.0.9, the software potentially exposes authentication tokens during the token validation process. | 7.2 |
| 2024-03-12 | CVE-2024-28236 | Information Exposure Through Log Files vulnerability in Go-Vela Worker Vela is a Pipeline Automation (CI/CD) framework built on Linux container technology written in Golang. | 6.5 |
| 2024-03-12 | CVE-2024-28186 | Information Exposure Through Log Files vulnerability in Freescout FreeScout is an open source help desk and shared inbox built with PHP. A vulnerability has been identified in the Free Scout Application, which exposes SMTP server credentials used by an organization in the application to users of the application. | 7.1 |
| 2024-03-08 | CVE-2024-23242 | Information Exposure Through Log Files vulnerability in Apple Ipad OS and Iphone OS A privacy issue was addressed by not logging contents of text fields. | 3.3 |
| 2024-02-12 | CVE-2024-23760 | Information Exposure Through Log Files vulnerability in Gambio 4.9.2.0 Cleartext Storage of Sensitive Information in Gambio 4.9.2.0 allows attackers to obtain sensitive information via error-handler.log.json and legacy-error-handler.log.txt under the webroot. | 2.7 |
| 2024-02-08 | CVE-2023-47131 | Information Exposure Through Log Files vulnerability in N-Able Passportal The N-able PassPortal extension before 3.29.2 for Chrome inserts sensitive information into a log file. | 7.5 |
| 2024-02-08 | CVE-2024-22464 | Information Exposure Through Log Files vulnerability in Dell EMC Appsync Dell EMC AppSync, versions from 4.2.0.0 to 4.6.0.0 including all Service Pack releases, contain an exposure of sensitive information vulnerability in AppSync server logs. | 6.8 |
| 2024-02-07 | CVE-2024-23448 | Information Exposure Through Log Files vulnerability in Elastic APM Server An issue was discovered whereby APM Server could log at ERROR level, a response from Elasticsearch indicating that indexing the document failed and that response would contain parts of the original document. | 7.5 |