Vulnerabilities > Information Exposure Through Discrepancy
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-01-11 | CVE-2022-4499 | Information Exposure Through Discrepancy vulnerability in Tp-Link Archer C5 Firmware and Tl-Wr710N Firmware TP-Link routers, Archer C5 and WR710N-V1, using the latest software, the strcmp function used for checking credentials in httpd, is susceptible to a side-channel attack. | 7.5 |
2023-01-11 | CVE-2022-4543 | Information Exposure Through Discrepancy vulnerability in Linux Kernel A flaw named "EntryBleed" was found in the Linux Kernel Page Table Isolation (KPTI). | 5.5 |
2023-01-10 | CVE-2022-48251 | Information Exposure Through Discrepancy vulnerability in ARM products The AES instructions on the ARMv8 platform do not have an algorithm that is "intrinsically resistant" to side-channel attacks. | 7.5 |
2023-01-08 | CVE-2016-15015 | Information Exposure Through Discrepancy vulnerability in Paysafe Barzahlen Payment Module PHP SDK A vulnerability, which was classified as problematic, was found in viafintech Barzahlen Payment Module PHP SDK up to 2.0.0. | 5.3 |
2023-01-01 | CVE-2022-47952 | Information Exposure Through Discrepancy vulnerability in Linuxcontainers LXC lxc-user-nic in lxc through 5.0.1 is installed setuid root, and may allow local users to infer whether any file exists, even within a protected directory tree, because "Failed to open" often indicates that a file does not exist, whereas "does not refer to a network namespace path" often indicates that a file exists. | 3.3 |
2022-12-28 | CVE-2022-4823 | Information Exposure Through Discrepancy vulnerability in Instedd Nuntium A vulnerability, which was classified as problematic, was found in InSTEDD Nuntium. | 5.9 |
2022-12-28 | CVE-2021-4294 | Information Exposure Through Discrepancy vulnerability in Redhat Openshift Container Platform and Openshift Osin A vulnerability was found in OpenShift OSIN. | 5.9 |
2022-12-27 | CVE-2021-4286 | Information Exposure Through Discrepancy vulnerability in Pysrp Project Pysrp A vulnerability, which was classified as problematic, has been found in cocagne pysrp up to 1.0.16. | 7.5 |
2022-12-26 | CVE-2022-41765 | Information Exposure Through Discrepancy vulnerability in Mediawiki An issue was discovered in MediaWiki before 1.35.8, 1.36.x and 1.37.x before 1.37.5, and 1.38.x before 1.38.3. | 5.3 |
2022-12-25 | CVE-2022-44381 | Snipe-IT through 6.0.14 allows attackers to check whether a user account exists because of response variations in a /password/reset request. | 5.3 |