CVSS: 4.0EPSS: 0%CPEs: 1EXPL: 0CVE-2024-22333 – IBM Maximo Application Suite information disclosure
https://notcve.org/view.php?id=CVE-2024-22333
13 Jun 2024 — IBM Maximo Asset Management 7.6.1.3 and IBM Maximo Application Suite 8.10 and 8.11 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 279973. IBM Maximo Asset Management 7.6.1.3 e IBM Maximo Application Suite 8.10 y 8.11 permiten almacenar páginas web localmente que pueden ser leídas por otro usuario en el sistema. ID de IBM X-Force: 279973. • https://exchange.xforce.ibmcloud.com/vulnerabilities/279973 • CWE-525: Use of Web Browser Cache Containing Sensitive Information •
CVSS: 4.4EPSS: 0%CPEs: 1EXPL: 0CVE-2024-25052 – IBM Jazz Reporting Service information disclosure
https://notcve.org/view.php?id=CVE-2024-25052
13 Jun 2024 — IBM Jazz Reporting Service 7.0.3 stores user credentials in plain clear text which can be read by an admin user. IBM X-Force ID: 283363. IBM Jazz Reporting Service 7.0.3 almacena las credenciales de usuario en texto plano que puede ser leído por un usuario administrador. ID de IBM X-Force: 283363. • https://exchange.xforce.ibmcloud.com/vulnerabilities/283363 • CWE-256: Plaintext Storage of a Password •
CVSS: 6.0EPSS: 0%CPEs: 9EXPL: 0CVE-2024-32856
https://notcve.org/view.php?id=CVE-2024-32856
13 Jun 2024 — A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information disclosure. • https://www.dell.com/support/kbdoc/en-us/000221745/dsa-2024-067 • CWE-20: Improper Input Validation •
CVSS: 10.0EPSS: 0%CPEs: 8EXPL: 0CVE-2024-30300 – Tenable Vulnerability Disclosure | Sensitive Information Disclosure Via Fake FMPS Worker
https://notcve.org/view.php?id=CVE-2024-30300
13 Jun 2024 — Adobe Framemaker Publishing Server versions 2020.3, 2022.2 and earlier are affected by an Information Exposure vulnerability (CWE-200) that could lead to privilege escalation. An attacker could exploit this vulnerability to gain access to sensitive information which may include system or user privileges. • https://helpx.adobe.com/security/products/framemaker-publishing-server/apsb24-38.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-30472
https://notcve.org/view.php?id=CVE-2024-30472
13 Jun 2024 — Telemetry Dashboard v1.0.0.8 for Dell ThinOS 2402 contains a sensitive information disclosure vulnerability. An unauthenticated user with local access to the device could exploit this vulnerability leading to information disclosure. • https://www.dell.com/support/kbdoc/en-us/000225289/dsa-2024-229 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 2CVE-2024-5947 – Deep Sea Electronics DSE855 Configuration Backup Missing Authentication Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-5947
13 Jun 2024 — Deep Sea Electronics DSE855 Configuration Backup Missing Authentication Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of Deep Sea Electronics DSE855 devices. This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of Deep Sea Electronics DSE855 devices. ... • https://packetstorm.news/files/id/179342 • CWE-306: Missing Authentication for Critical Function •
CVSS: 6.2EPSS: 0%CPEs: -EXPL: 0CVE-2024-2300 – HP Advance Mobile Application – Potential Information Disclosure
https://notcve.org/view.php?id=CVE-2024-2300
12 Jun 2024 — HP Advance Mobile Applications for iOS and Android are potentially vulnerable to information disclosure when using an outdated version of the application via mobile devices. • https://support.hp.com/us-en/document/ish_10737234-10737262-16/hpsbgn03921 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-52335 – Advantech iView ConfigurationServlet SQL Injection Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2023-52335
12 Jun 2024 — Advantech iView ConfigurationServlet SQL Injection Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Advantech iView. ... This vulnerability allows remote attackers to disclose sensitive information on affected installations of Advantech iView. • https://www.advantech.com/zh-tw/support/details/firmware?id=1-HIPU-183 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-35263 – Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-35263
11 Jun 2024 — Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability Vulnerabilidad de divulgación de información en Microsoft Dynamics 365 (local) • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-35263 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.5EPSS: 0%CPEs: 12EXPL: 0CVE-2024-30096 – Windows Cryptographic Services Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-30096
11 Jun 2024 — Windows Cryptographic Services Information Disclosure Vulnerability Vulnerabilidad de divulgación de información de servicios criptográficos de Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30096 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •