Vulnerabilities > Information Exposure Through Discrepancy
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-03-21 | CVE-2023-1538 | Information Exposure Through Discrepancy vulnerability in Answer Observable Timing Discrepancy in GitHub repository answerdev/answer prior to 1.0.6. | 5.3 |
| 2023-03-21 | CVE-2023-1540 | Information Exposure Through Discrepancy vulnerability in Answer Observable Response Discrepancy in GitHub repository answerdev/answer prior to 1.0.6. | 5.3 |
| 2023-03-02 | CVE-2023-25806 | Information Exposure Through Discrepancy vulnerability in Amazon Opensearch and Opensearch Security OpenSearch Security is a plugin for OpenSearch that offers encryption, authentication and authorization. | 5.3 |
| 2023-03-01 | CVE-2022-39228 | Information Exposure Through Discrepancy vulnerability in Vantage6 vantage6 is a privacy preserving federated learning infrastructure for secure insight exchange. | 6.5 |
| 2023-02-16 | CVE-2020-12413 | Information Exposure Through Discrepancy vulnerability in Mozilla Firefox The Raccoon attack is a timing attack on DHE ciphersuites inherit in the TLS specification. | 5.9 |
| 2023-02-15 | CVE-2023-0361 | Information Exposure Through Discrepancy vulnerability in multiple products A timing side-channel in the handling of RSA ClientKeyExchange messages was discovered in GnuTLS. | 7.4 |
| 2023-02-08 | CVE-2022-4304 | Information Exposure Through Discrepancy vulnerability in multiple products A timing based side channel exists in the OpenSSL RSA Decryption implementation which could be sufficient to recover a plaintext across a network in a Bleichenbacher style attack. | 5.9 |
| 2023-01-23 | CVE-2023-0440 | Information Exposure Through Discrepancy vulnerability in Healthchecks Observable Discrepancy in GitHub repository healthchecks/healthchecks prior to v2.6. | 5.3 |
| 2023-01-13 | CVE-2022-3143 | Information Exposure Through Discrepancy vulnerability in Redhat products wildfly-elytron: possible timing attacks via use of unsafe comparator. | 7.4 |
| 2023-01-13 | CVE-2022-42288 | Information Exposure Through Discrepancy vulnerability in Nvidia DGX A100 Firmware NVIDIA BMC contains a vulnerability in IPMI handler, where an unauthorized attacker can use certain oracles to guess a valid BMC username, which may lead to an information disclosure. | 5.3 |