Vulnerabilities > Information Exposure Through Discrepancy

DATE CVE VULNERABILITY TITLE RISK
2023-01-23 CVE-2023-0440 Information Exposure Through Discrepancy vulnerability in Healthchecks
Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository healthchecks/healthchecks prior to v2.6.
network
low complexity
healthchecks CWE-203
5.3
2023-01-18 CVE-2010-10006 Information Exposure Through Discrepancy vulnerability in Jopenid Project Jopenid
A vulnerability, which was classified as problematic, was found in michaelliao jopenid.
network
low complexity
jopenid-project CWE-203
7.5
2023-01-13 CVE-2022-3143 Information Exposure Through Discrepancy vulnerability in Redhat products
wildfly-elytron: possible timing attacks via use of unsafe comparator.
network
high complexity
redhat CWE-203
7.4
2023-01-13 CVE-2022-42288 Information Exposure Through Discrepancy vulnerability in Nvidia DGX A100 Firmware
NVIDIA BMC contains a vulnerability in IPMI handler, where an unauthorized attacker can use certain oracles to guess a valid BMC username, which may lead to an information disclosure.
network
low complexity
nvidia CWE-203
5.3
2023-01-11 CVE-2022-4499 Information Exposure Through Discrepancy vulnerability in Tp-Link Archer C5 Firmware and Tl-Wr710N Firmware
TP-Link routers, Archer C5 and WR710N-V1, using the latest software, the strcmp function used for checking credentials in httpd, is susceptible to a side-channel attack.
network
low complexity
tp-link CWE-203
7.5
2023-01-11 CVE-2022-4543 Information Exposure Through Discrepancy vulnerability in Linux Kernel
A flaw named "EntryBleed" was found in the Linux Kernel Page Table Isolation (KPTI).
local
low complexity
linux CWE-203
5.5
2023-01-10 CVE-2022-48251 Information Exposure Through Discrepancy vulnerability in ARM products
** DISPUTED ** The AES instructions on the ARMv8 platform do not have an algorithm that is "intrinsically resistant" to side-channel attacks.
network
low complexity
arm CWE-203
7.5
2023-01-08 CVE-2016-15015 Information Exposure Through Discrepancy vulnerability in Paysafe Barzahlen Payment Module PHP SDK
A vulnerability, which was classified as problematic, was found in viafintech Barzahlen Payment Module PHP SDK up to 2.0.0.
network
low complexity
paysafe CWE-203
5.3
2023-01-01 CVE-2013-10006 Information Exposure Through Discrepancy vulnerability in Ziftrshop Primecoin 0.8.4
A vulnerability classified as problematic was found in Ziftr primecoin up to 0.8.4rc1.
network
low complexity
ziftrshop CWE-203
7.5
2022-12-28 CVE-2022-4823 Information Exposure Through Discrepancy vulnerability in Instedd Nuntium
A vulnerability, which was classified as problematic, was found in InSTEDD Nuntium.
network
high complexity
instedd CWE-203
5.9