Vulnerabilities > Information Exposure Through Log Files
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-02-06 | CVE-2017-5549 | Information Exposure Through Log Files vulnerability in Linux Kernel The klsi_105_get_line_state function in drivers/usb/serial/kl5kusb105.c in the Linux kernel before 4.9.5 places uninitialized heap-memory contents into a log entry upon a failure to read the line status, which allows local users to obtain sensitive information by reading the log. | 5.5 |
| 2017-02-05 | CVE-2017-5137 | Information Exposure Through Log Files vulnerability in Sendquick products An issue was discovered on SendQuick Entera and Avera devices before 2HF16. | 6.2 |
| 2017-02-01 | CVE-2016-8912 | Information Exposure Through Log Files vulnerability in IBM Kenexa LMS on Cloud IBM Kenexa LMS on Cloud 13.1 and 13.2 - 13.2.4 stores potentially sensitive information in in log files that could be read by an authenticated user. | 4.3 |
| 2017-02-01 | CVE-2016-0296 | Information Exposure Through Log Files vulnerability in IBM Bigfix Platform IBM Tivoli Endpoint Manager - Mobile Device Management (MDM) stores potentially sensitive information in log files that could be available to a local user. | 3.3 |
| 2017-01-31 | CVE-2015-8977 | Information Exposure Through Log Files vulnerability in Mybb Merge System and Mybb MyBB (aka MyBulletinBoard) before 1.6.18 and 1.8.x before 1.8.6 and MyBB Merge System before 1.8.6 allow remote attackers to obtain the installation path via vectors involving error log files. | 7.5 |
| 2017-01-13 | CVE-2016-9882 | Information Exposure Through Log Files vulnerability in Cloudfoundry Capi-Release and Cf-Release An issue was discovered in Cloud Foundry Foundation cf-release versions prior to v250 and CAPI-release versions prior to v1.12.0. | 7.5 |
| 2016-12-14 | CVE-2016-4443 | Information Exposure Through Log Files vulnerability in Redhat Enterprise Virtualization 3.6 Red Hat Enterprise Virtualization (RHEV) Manager 3.6 allows local users to obtain encryption keys, certificates, and other sensitive information by reading the engine-setup log file. | 5.5 |
| 2016-11-30 | CVE-2016-2943 | Information Exposure Through Log Files vulnerability in IBM Bigfix Remote Control 9.1.2 IBM BigFix Remote Control before 9.1.3 allows local users to obtain sensitive information by leveraging unspecified privileges to read a log file. | 1.9 |
| 2016-11-25 | CVE-2016-2928 | Information Exposure Through Log Files vulnerability in IBM Bigfix Remote Control 9.1.2 IBM BigFix Remote Control before 9.1.3 allows remote authenticated users to obtain sensitive information by reading error logs. | 4.3 |
| 2016-11-25 | CVE-2016-5967 | Information Exposure Through Log Files vulnerability in IBM Rational Asset Analyzer The installation component in IBM Rational Asset Analyzer (RAA) 6.1.0 before FP10 allows local users to discover the WAS Admin password by reading IM native logs. | 5.5 |