CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-4332 – Improper Authentication in Tripwire Enterprise 9.1.0 APIs
https://notcve.org/view.php?id=CVE-2024-4332
Exploitation of this vulnerability could allow remote attackers to gain privileged access to the APIs and lead to unauthorized information disclosure or modification. • https://www.fortra.com/security/advisory/fi-2024-006 • CWE-303: Incorrect Implementation of Authentication Algorithm •
CVSS: 7.5EPSS: 0%CPEs: -EXPL: 0CVE-2024-4540 – Keycloak: exposure of sensitive information in pushed authorization requests (par) kc_restart cookie
https://notcve.org/view.php?id=CVE-2024-4540
Client-provided parameters were found to be included in plain text in the KC_RESTART cookie returned by the authorization server's HTTP response to a `request_uri` authorization request, possibly leading to an information disclosure vulnerability. • https://access.redhat.com/errata/RHSA-2024:3566 https://access.redhat.com/errata/RHSA-2024:3567 https://access.redhat.com/errata/RHSA-2024:3568 https://access.redhat.com/errata/RHSA-2024:3570 https://access.redhat.com/errata/RHSA-2024:3572 https://access.redhat.com/errata/RHSA-2024:3573 https://access.redhat.com/errata/RHSA-2024:3574 https://access.redhat.com/errata/RHSA-2024:3575 https://access.redhat.com/errata/RHSA-2024:3576 https://access.redhat.com/security/cve&# • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 8.2EPSS: 0%CPEs: 10EXPL: 0CVE-2023-43555 – Buffer Over-read in Video
https://notcve.org/view.php?id=CVE-2023-43555
Information disclosure in Video while parsing mp2 clip with invalid section length. • https://docs.qualcomm.com/product/publicresources/securitybulletin/june-2024-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 0CVE-2023-43537 – Buffer Over-read in WLAN Host
https://notcve.org/view.php?id=CVE-2023-43537
Information disclosure while handling T2LM Action Frame in WLAN Host. • https://docs.qualcomm.com/product/publicresources/securitybulletin/june-2024-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 6.6EPSS: 0%CPEs: -EXPL: 0CVE-2024-20071
https://notcve.org/view.php?id=CVE-2024-20071
This could lead to local information disclosure with System execution privileges needed. • https://corp.mediatek.com/product-security-bulletin/June-2024 • CWE-125: Out-of-bounds Read •