CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 0CVE-2023-50953 – IBM InfoSphere Information Server information disclosure
https://notcve.org/view.php?id=CVE-2023-50953
IBM InfoSphere Information Server 11.7 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system. ... IBM InfoSphere Information Server 11.7 podría permitir a un atacante remoto obtener información confidencial cuando se devuelve un mensaje de error técnico detallado. • https://exchange.xforce.ibmcloud.com/vulnerabilities/275775 https://www.ibm.com/support/pages/node/7159057 • CWE-209: Generation of Error Message Containing Sensitive Information •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2023-50954 – IBM InfoSphere Information Server information disclosure
https://notcve.org/view.php?id=CVE-2023-50954
IBM InfoSphere Information Server 11.7 returns sensitive information in URL information that could be used in further attacks against the system. ... IBM InfoSphere Information Server 11.7 devuelve información confidencial en información URL que podría usarse en futuros ataques contra el sistema. • https://exchange.xforce.ibmcloud.com/vulnerabilities/275776 https://www.ibm.com/support/pages/node/7158597 • CWE-598: Use of GET Request Method With Sensitive Query Strings •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-35119 – IBM InfoSphere Information Server information disclosure
https://notcve.org/view.php?id=CVE-2024-35119
IBM InfoSphere Information Server 11.7 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in a stack trace. This information could be used in further attacks against the system. ... IBM InfoSphere Information Server 11.7 podría permitir a un atacante remoto obtener información confidencial cuando se devuelve un mensaje de error técnico detallado en un seguimiento de la pila. • https://exchange.xforce.ibmcloud.com/vulnerabilities/290342 https://www.ibm.com/support/pages/node/7159052 • CWE-209: Generation of Error Message Containing Sensitive Information •
CVSS: 4.0EPSS: 0%CPEs: 2EXPL: 0CVE-2022-38383 – IBM Cloud Pak for Security information disclosure
https://notcve.org/view.php?id=CVE-2022-38383
IBM Cloud Pak for Security (CP4S) 1.10.0.0 through 1.10.11.0 and IBM QRadar Software Suite 1.10.12.0 through 1.10.21.0 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 233673. IBM Cloud Pak for Security (CP4S) 1.10.0.0 a 1.10.11.0 e IBM QRadar Software Suite 1.10.12.0 a 1.10.21.0 permiten almacenar localmente páginas web que pueden ser leídas por otro usuario en el sistema. ID de IBM X-Force: 233673. • https://exchange.xforce.ibmcloud.com/vulnerabilities/233673 https://www.ibm.com/support/pages/node/7158986 • CWE-525: Use of Web Browser Cache Containing Sensitive Information •
CVSS: 7.8EPSS: 0%CPEs: -EXPL: 0CVE-2022-27540
https://notcve.org/view.php?id=CVE-2022-27540
A potential Time-of-Check to Time-of Use (TOCTOU) vulnerability has been identified in the HP BIOS for certain HP PC products, which might allow arbitrary code execution, denial of service, and information disclosure. • https://support.hp.com/us-en/document/ish_10810714-10810745-16/hpsbhf03948 • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •