CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 1CVE-2024-30056 – Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-30056
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability Vulnerabilidad de divulgación de información de Microsoft Edge (basado en Chromium) • https://github.com/absholi7ly/Microsoft-Edge-Information-Disclosure https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30056 • CWE-359: Exposure of Private Personal Information to an Unauthorized Actor •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-35223 – Dapr API Token Exposure
https://notcve.org/view.php?id=CVE-2024-35223
This causes of a leak of the application token of the invoker app to the invoked app when using Dapr as a gRPC proxy for remote service invocation. • https://github.com/dapr/dapr/commit/e0591e43d0cdfd30a2f2960dce5d9892dc98bc2c https://github.com/dapr/dapr/issues/7344 https://github.com/dapr/dapr/pull/7404 https://github.com/dapr/dapr/releases/tag/v1.13.3 https://github.com/dapr/dapr/security/advisories/GHSA-284c-x8m7-9w5h • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 6.9EPSS: 0%CPEs: 2EXPL: 0CVE-2024-5230 – EnvaySoft FleetCart information disclosure
https://notcve.org/view.php?id=CVE-2024-5230
The manipulation of the argument razorpayKeyId leads to information disclosure. ... Dank Manipulation des Arguments razorpayKeyId mit unbekannten Daten kann eine information disclosure-Schwachstelle ausgenutzt werden. ... FleetCart version 4.1.1 suffers from an information leakage vulnerability. • https://vuldb.com/?ctiid.265981 https://vuldb.com/?id.265981 https://vuldb.com/?submit.333519 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-31894 – IBM App Connect Enterprise information disclosure
https://notcve.org/view.php?id=CVE-2024-31894
IBM App Connect Enterprise 12.0.1.0 through 12.0.12.1 could allow an authenticated user to obtain sensitive user information using an expired access token. • https://exchange.xforce.ibmcloud.com/vulnerabilities/288175 https://www.ibm.com/support/pages/node/7154606 • CWE-324: Use of a Key Past its Expiration Date •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-31895 – IBM App Connect Enterprise information disclosure
https://notcve.org/view.php?id=CVE-2024-31895
IBM App Connect Enterprise 12.0.1.0 through 12.0.12.1 could allow an authenticated user to obtain sensitive user information using an expired access token. • https://exchange.xforce.ibmcloud.com/vulnerabilities/288176 https://www.ibm.com/support/pages/node/7154606 • CWE-324: Use of a Key Past its Expiration Date •