CVSS: 9.4EPSS: 0%CPEs: -EXPL: 0CVE-2024-25533
https://notcve.org/view.php?id=CVE-2024-25533
Error messages in RuvarOA v6.01 and v12.01 were discovered to leak the physical path of the website (/WorkFlow/OfficeFileUpdate.aspx). • https://gist.github.com/Mr-xn/bc8261a5c3e35a72768723acf1da358d#information-leakage-and-unauthorized-access-to-sensitive-data • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 6.2EPSS: 0%CPEs: 1EXPL: 0CVE-2023-40694 – IBM Watson CP4D Data Stores information disclosure
https://notcve.org/view.php?id=CVE-2023-40694
IBM Watson CP4D Data Stores 4.0.0 through 4.8.4 stores potentially sensitive information in log files that could be read by a local user. IBM X-Force ID: 264838. IBM Watson CP4D Data Stores 4.0.0 a 4.8.4 almacena información potencialmente confidencial en archivos de registro que un usuario local podría leer. ID de IBM X-Force: 264838. • https://exchange.xforce.ibmcloud.com/vulnerabilities/264838 https://www.ibm.com/support/pages/node/7150286 • CWE-532: Insertion of Sensitive Information into Log File •
CVSS: 6.5EPSS: 0%CPEs: 4EXPL: 0CVE-2024-23709
https://notcve.org/view.php?id=CVE-2024-23709
This could lead to remote information disclosure with no additional execution privileges needed. • https://android.googlesource.com/platform/external/sonivox/+/3f798575d2d39cd190797427d13471d6e7ceae4c https://source.android.com/security/bulletin/2024-05-01 • CWE-122: Heap-based Buffer Overflow •
CVSS: -EPSS: 0%CPEs: 2EXPL: 0CVE-2024-0022
https://notcve.org/view.php?id=CVE-2024-0022
This could lead to local information disclosure with no additional execution privileges needed. • https://android.googlesource.com/platform/frameworks/base/+/bdf1cce569c9700965ff6baee8efd3fb1e8269e8 https://source.android.com/security/bulletin/2024-04-01 •
CVSS: 3.7EPSS: 0%CPEs: -EXPL: 0CVE-2024-4596 – Kimai Session information disclosure
https://notcve.org/view.php?id=CVE-2024-4596
The manipulation of the argument PHPSESSIONID leads to information disclosure. ... Dank der Manipulation des Arguments PHPSESSIONID mit unbekannten Daten kann eine information disclosure-Schwachstelle ausgenutzt werden. • https://github.com/kimai/kimai/releases/tag/2.16.0 https://vuldb.com/?ctiid.263318 https://vuldb.com/?id.263318 https://vuldb.com/?submit.328639 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •