Vulnerabilities > Information Exposure Through Discrepancy
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-08-10 | CVE-2019-14354 | Information Exposure Through Discrepancy vulnerability in Ledger Nano S Firmware and Nano X Firmware On Ledger Nano S and Nano X devices, a side channel for the row-based OLED display was found. | 2.4 |
| 2019-08-08 | CVE-2019-14353 | Information Exposure Through Discrepancy vulnerability in Trezor ONE Firmware On Trezor One devices before 1.8.2, a side channel for the row-based OLED display was found. | 4.2 |
| 2019-07-29 | CVE-2019-12743 | Information Exposure Through Discrepancy vulnerability in Humhub Social Network KIT 1.3.13 HumHub Social Network Kit Enterprise v1.3.13 allows remote attackers to find the user accounts existing on any Social Network Kits (including self-hosted ones) by brute-forcing the username after the /u/ initial URI substring, aka Response Discrepancy Information Exposure. | 5.3 |
| 2019-07-29 | CVE-2019-1020002 | Information Exposure Through Discrepancy vulnerability in Pterodactyl Panel Pterodactyl before 0.7.14 with 2FA allows credential sniffing. | 7.5 |
| 2019-07-23 | CVE-2019-2818 | Information Exposure Through Discrepancy vulnerability in Oracle JDK and JRE Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Security). | 3.1 |
| 2019-07-23 | CVE-2019-9815 | Information Exposure Through Discrepancy vulnerability in Mozilla Firefox If hyperthreading is not disabled, a timing attack vulnerability exists, similar to previous Spectre attacks. | 8.1 |
| 2019-07-16 | CVE-2019-13383 | Information Exposure Through Discrepancy vulnerability in Control-Webpanel Webpanel 0.9.8.836 In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.846, the Login process allows attackers to check whether a username is valid by reading the HTTP response. | 5.3 |
| 2019-05-28 | CVE-2019-12383 | Information Exposure Through Discrepancy vulnerability in Torproject TOR Browser Tor Browser before 8.0.1 has an information exposure vulnerability. | 4.3 |
| 2019-05-24 | CVE-2019-10848 | Information Exposure Through Discrepancy vulnerability in Computrols Building Automation Software Computrols CBAS 18.0.0 allows Username Enumeration. | 5.3 |
| 2019-05-16 | CVE-2019-10114 | Information Exposure Through Discrepancy vulnerability in Gitlab An Information Exposure issue (issue 2 of 2) was discovered in GitLab Community and Enterprise Edition before 11.7.8, 11.8.x before 11.8.4, and 11.9.x before 11.9.2. | 7.5 |