Page 124 of 10823 results (0.150 seconds)

CVSS: 7.5EPSS: 0%CPEs: -EXPL: 0

Telemetry Dashboard v1.0.0.8 for Dell ThinOS 2402 contains a sensitive information disclosure vulnerability. An unauthenticated user with local access to the device could exploit this vulnerability leading to information disclosure. • https://www.dell.com/support/kbdoc/en-us/000225289/dsa-2024-229 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •

CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1

Deep Sea Electronics DSE855 Configuration Backup Missing Authentication Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of Deep Sea Electronics DSE855 devices. ... This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of Deep Sea Electronics DSE855 devices. ... Deep Sea Electronics DSE855 is vulnerable to configuration disclosure when direct object reference is made to the Backup.bin file using an HTTP GET request. This will enable an attacker to disclose sensitive information and help her in authentication bypass, privilege escalation, and full system access. • https://github.com/Cappricio-Securities/CVE-2024-5947 https://www.zerodayinitiative.com/advisories/ZDI-24-671 • CWE-306: Missing Authentication for Critical Function •

CVSS: 6.2EPSS: 0%CPEs: -EXPL: 0

HP Advance Mobile Applications for iOS and Android are potentially vulnerable to information disclosure when using an outdated version of the application via mobile devices. • https://support.hp.com/us-en/document/ish_10737234-10737262-16/hpsbgn03921 •

CVSS: 7.5EPSS: 0%CPEs: -EXPL: 0

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Advantech iView. •

CVSS: 5.7EPSS: 0%CPEs: 1EXPL: 0

Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability Vulnerabilidad de divulgación de información en Microsoft Dynamics 365 (local) • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-35263 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •