Page 120 of 10569 results (0.027 seconds)

CVSS: 4.0EPSS: 0%CPEs: 1EXPL: 0

IBM Maximo Asset Management 7.6.1.3 and IBM Maximo Application Suite 8.10 and 8.11 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 279973. IBM Maximo Asset Management 7.6.1.3 e IBM Maximo Application Suite 8.10 y 8.11 permiten almacenar páginas web localmente que pueden ser leídas por otro usuario en el sistema. ID de IBM X-Force: 279973. • https://exchange.xforce.ibmcloud.com/vulnerabilities/279973 https://www.ibm.com/support/pages/node/7157256 https://www.ibm.com/support/pages/node/7157257 • CWE-525: Use of Web Browser Cache Containing Sensitive Information •

CVSS: 4.4EPSS: 0%CPEs: 1EXPL: 0

IBM Jazz Reporting Service 7.0.3 stores user credentials in plain clear text which can be read by an admin user. IBM X-Force ID: 283363. IBM Jazz Reporting Service 7.0.3 almacena las credenciales de usuario en texto plano que puede ser leído por un usuario administrador. ID de IBM X-Force: 283363. • https://exchange.xforce.ibmcloud.com/vulnerabilities/283363 https://https://www.ibm.com/support/pages/node/7157232 • CWE-256: Plaintext Storage of a Password •

CVSS: 5.1EPSS: 0%CPEs: 9EXPL: 0

A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information disclosure. • https://www.dell.com/support/kbdoc/en-us/000221745/dsa-2024-067 • CWE-20: Improper Input Validation •

CVSS: 9.8EPSS: 0%CPEs: 8EXPL: 0

Adobe Framemaker Publishing Server versions 2020.3, 2022.2 and earlier are affected by an Information Exposure vulnerability (CWE-200) that could lead to privilege escalation. An attacker could exploit this vulnerability to gain access to sensitive information which may include system or user privileges. Exploitation of this issue does not require user interaction. Las versiones 2020.3, 2022.2 y anteriores de Adobe Framemaker Publishing Server se ven afectadas por una vulnerabilidad de exposición de información (CWE-200) que podría provocar una escalada de privilegios. Un atacante podría aprovechar esta vulnerabilidad para obtener acceso a información confidencial que puede incluir privilegios del sistema o del usuario. • https://helpx.adobe.com/security/products/framemaker-publishing-server/apsb24-38.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •

CVSS: 7.5EPSS: 0%CPEs: -EXPL: 0

Telemetry Dashboard v1.0.0.8 for Dell ThinOS 2402 contains a sensitive information disclosure vulnerability. An unauthenticated user with local access to the device could exploit this vulnerability leading to information disclosure. • https://www.dell.com/support/kbdoc/en-us/000225289/dsa-2024-229 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •