CVSS: 7.1EPSS: 0%CPEs: 2EXPL: 0CVE-2024-27929 – Use After Free in SixLabors.ImageSharp
https://notcve.org/view.php?id=CVE-2024-27929
05 Mar 2024 — This vulnerability is triggered when an attacker passes a specially crafted PNG image file to ImageSharp for conversion, potentially leading to information disclosure. • https://github.com/SixLabors/ImageSharp/security/advisories/GHSA-65x7-c272-7g7r • CWE-416: Use After Free •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2023-7232 – Backup and Restore WordPress <= 1.45 - Unauthenticated Sensitive Data Exposure
https://notcve.org/view.php?id=CVE-2023-7232
05 Mar 2024 — The Backup and Restore WordPress WordPress plugin through 1.45 does not protect some log files containing sensitive information such as site configuration etc, allowing unauthenticated users to access such data El complemento Backup and Restore WordPress de WordPress hasta la versión 1.45 no protege algunos archivos de registro que contienen información confidencial, como la configuración del sitio, etc., lo que permite a usuarios no autenticados acceder a dichos datos. The Backup and Restore WordPre... • https://wpscan.com/vulnerability/323fef8a-aa17-4698-9a02-c12d1d390763 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2023-38362 – IBM CICS TX information disclosure
https://notcve.org/view.php?id=CVE-2023-38362
04 Mar 2024 — IBM CICS TX Advanced 10.1 could disclose sensitive information to a remote attacker due to observable discrepancy in HTTP responses. • https://exchange.xforce.ibmcloud.com/vulnerabilities/260814 • CWE-204: Observable Response Discrepancy •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2022-43890 – IBM Security Verify Privilege On-Premises information disclosure
https://notcve.org/view.php?id=CVE-2022-43890
04 Mar 2024 — IBM Security Verify Privilege On-Premises 11.5 could disclose sensitive information through an HTTP request that could aid an attacker in further attacks against the system. • https://exchange.xforce.ibmcloud.com/vulnerabilities/240453 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.1EPSS: 0%CPEs: -EXPL: 0CVE-2023-33078 – Buffer Over-read in DSP Services
https://notcve.org/view.php?id=CVE-2023-33078
04 Mar 2024 — Information Disclosure while processing IOCTL request in FastRPC. • https://www.qualcomm.com/company/product-security/bulletins/march-2024-bulletin • CWE-126: Buffer Over-read •
CVSS: 4.3EPSS: 0%CPEs: -EXPL: 0CVE-2024-21826 – Huks has an insecure storage of sensitive information vulnerability
https://notcve.org/view.php?id=CVE-2024-21826
04 Mar 2024 — in OpenHarmony v3.2.4 and prior versions allow a local attacker cause sensitive information leak through insecure storage. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2024/2024-03.md • CWE-922: Insecure Storage of Sensitive Information •
CVSS: 4.0EPSS: 0%CPEs: -EXPL: 0CVE-2024-21816 – Background task manager has an improper preservation of permissions vulnerability
https://notcve.org/view.php?id=CVE-2024-21816
04 Mar 2024 — in OpenHarmony v4.0.0 and prior versions allow a local attacker cause information leak through improper preservation of permissions. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2024/2024-03.md • CWE-281: Improper Preservation of Permissions •
CVSS: 2.9EPSS: 0%CPEs: -EXPL: 0CVE-2023-25176 – Pasteboard has an out-of-bounds read vulnerability
https://notcve.org/view.php?id=CVE-2023-25176
04 Mar 2024 — in OpenHarmony v3.2.4 and prior versions allow a local attacker cause information leak through out-of-bounds Read. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2024/2024-03.md • CWE-125: Out-of-bounds Read •
CVSS: 4.4EPSS: 0%CPEs: -EXPL: 0CVE-2024-20038
https://notcve.org/view.php?id=CVE-2024-20038
04 Mar 2024 — This could lead to local information disclosure with System execution privileges needed. • https://corp.mediatek.com/product-security-bulletin/March-2024 • CWE-125: Out-of-bounds Read •
CVSS: 4.4EPSS: 0%CPEs: 10EXPL: 0CVE-2024-20036
https://notcve.org/view.php?id=CVE-2024-20036
04 Mar 2024 — This could lead to local information disclosure with System execution privileges needed. • https://corp.mediatek.com/product-security-bulletin/March-2024 •