Vulnerabilities > Information Exposure Through Discrepancy
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-05-20 | CVE-2022-29185 | Information Exposure Through Discrepancy vulnerability in Totp-Rs Project Totp-Rs totp-rs is a Rust library that permits the creation of 2FA authentification tokens per time-based one-time password (TOTP). | 3.5 |
| 2022-05-20 | CVE-2022-24043 | Information Exposure Through Discrepancy vulnerability in Siemens products A vulnerability has been identified in Desigo DXR2 (All versions < V01.21.142.5-22), Desigo PXC3 (All versions < V01.21.142.4-18), Desigo PXC4 (All versions < V02.20.142.10-10884), Desigo PXC5 (All versions < V02.20.142.10-10884). | 5.0 |
| 2022-05-12 | CVE-2021-33149 | Information Exposure Through Discrepancy vulnerability in Intel products Observable behavioral discrepancy in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access. | 5.5 |
| 2022-05-11 | CVE-2021-46744 | Information Exposure Through Discrepancy vulnerability in AMD products An attacker with access to a malicious hypervisor may be able to infer data values used in a SEV guest on AMD CPUs by monitoring ciphertext values over time. | 6.5 |
| 2022-05-06 | CVE-2021-33845 | Information Exposure Through Discrepancy vulnerability in Splunk The Splunk Enterprise REST API allows enumeration of usernames via the lockout error message. | 5.0 |
| 2022-04-20 | CVE-2022-1318 | Information Exposure Through Discrepancy vulnerability in Carrier Hills Comnav Firmware 300219 Hills ComNav version 3002-19 suffers from a weak communication channel. | 5.5 |
| 2022-04-14 | CVE-2022-27814 | Information Exposure Through Discrepancy vulnerability in Waycrate Swhkd 1.1.5 SWHKD 1.1.5 allows arbitrary file-existence tests via the -c option. | 3.3 |
| 2022-04-05 | CVE-2022-22356 | Information Exposure Through Discrepancy vulnerability in IBM MQ Appliance 9.2.0.0 IBM MQ Appliance 9.2 CD and 9.2 LTS could allow an attacker to enumerate account credentials due to an observable discrepancy in valid and invalid login attempts. | 4.0 |
| 2022-03-30 | CVE-2021-39744 | Information Exposure Through Discrepancy vulnerability in Google Android 12.1 In DevicePolicyManager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 2.1 |
| 2022-03-30 | CVE-2021-39745 | Information Exposure Through Discrepancy vulnerability in Google Android 12.1 In DevicePolicyManager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 2.1 |