CVE-2024-41781 – IBM PowerVM Hypervisor information disclosure
https://notcve.org/view.php?id=CVE-2024-41781
IBM PowerVM Platform KeyStore (IBM PowerVM Hypervisor FW950.00 through FW950.90, FW1030.00 through FW1030.60, FW1050.00 through FW1050.20, and FW1060.00 through FW1060.10 functionality can be compromised if an attacker gains service access to the HMC. An attacker that gains service access to the HMC can locate and through a series of service procedures decrypt data contained in the Platform KeyStore. La funcionalidad de IBM PowerVM Platform KeyStore (IBM PowerVM Hypervisor FW950.00 a FW950.90, FW1030.00 a FW1030.60, FW1050.00 a FW1050.20 y FW1060.00 a FW1060.10) puede verse comprometida si un atacante obtiene acceso de servicio a la HMC. Un atacante que obtiene acceso de servicio a la HMC puede localizar y, a través de una serie de procedimientos de servicio, descifrar los datos contenidos en Platform KeyStore. • https://www.ibm.com/support/pages/node/7172698 • CWE-497: Exposure of Sensitive System Information to an Unauthorized Control Sphere •
CVE-2024-8929 – Leak partial content of the heap through heap buffer over-read in mysqlnd
https://notcve.org/view.php?id=CVE-2024-8929
In PHP versions 8.1.* before 8.1.31, 8.2.* before 8.2.26, 8.3.* before 8.3.14, a hostile MySQL server can cause the client to disclose the content of its heap containing data from other SQL requests and possible other data belonging to different users of the same server. • https://github.com/php/php-src/security/advisories/GHSA-h35g-vwh6-m678 • CWE-125: Out-of-bounds Read CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVE-2022-43937 – Brocade SANnav Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2022-43937
Possible information exposure through log file vulnerability where sensitive fields are recorded in the debug-enabled logs when debugging is turned on in Brocade SANnav before 2.3.0 and 2.2.2a • https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/22509 • CWE-532: Insertion of Sensitive Information into Log File •
CVE-2018-9486
https://notcve.org/view.php?id=CVE-2018-9486
This could lead to local information disclosure over bluetooth with no additional execution privileges needed. • https://source.android.com/security/bulletin/2018-09-01 • CWE-125: Out-of-bounds Read •
CVE-2018-9485
https://notcve.org/view.php?id=CVE-2018-9485
This could lead to remote information disclosure over bluetooth with no additional execution privileges needed. • https://source.android.com/security/bulletin/2018-09-01 • CWE-125: Out-of-bounds Read •