Page 169 of 10829 results (0.035 seconds)

CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 1

CVE-2024-2730 – Predictable Page Indexing Might Lead to Sensitive Data Exposure in Mautic

https://notcve.org/view.php?id=CVE-2024-2730

Mautic uses predictable page indices for unpublished landing pages, their content can be accessed by unauthenticated users under public preview URLs which could expose sensitive data. At the time of publication of the CVE no patch is available Mautic utiliza índices de páginas predecibles para páginas de destino no publicadas; usuarios no autenticados pueden acceder a su contenido a través de URL de vista previa públicas que podrían exponer datos confidenciales. En el momento de publicación del CVE no hay ningún parche disponible • https://huntr.com/bounties/cd3321a4-9ebc-48fa-8d4c-b5720089c2d9 • CWE-425: Direct Request ('Forced Browsing') •

CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0

CVE-2024-20766 – Adobe Indesign 2024 TIF File Parsing Out-Of-Bound Read Information Disclosure Vulnerabiity

https://notcve.org/view.php?id=CVE-2024-20766

InDesign Desktop versions 18.5.1, 19.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Las versiones 18.5.1, 19.2 y anteriores de InDesign Desktop se ven afectadas por una vulnerabilidad de lectura fuera de los límites que podría provocar la divulgación de memoria confidencial. Un atacante podría aprovechar esta vulnerabilidad para evitar mitigaciones como ASLR. • https://helpx.adobe.com/security/products/indesign/apsb24-20.html • CWE-125: Out-of-bounds Read •

CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0

CVE-2024-29992 – Azure Identity Library for .NET Information Disclosure Vulnerability

https://notcve.org/view.php?id=CVE-2024-29992

Azure Identity Library for .NET Information Disclosure Vulnerability Librería de identidad de Azure para la vulnerabilidad de divulgación de información de .NET • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29992 • CWE-522: Insufficiently Protected Credentials •

CVSS: 5.5EPSS: 0%CPEs: 17EXPL: 0

CVE-2024-28900 – Windows Remote Access Connection Manager Information Disclosure Vulnerability

https://notcve.org/view.php?id=CVE-2024-28900

Windows Remote Access Connection Manager Information Disclosure Vulnerability Vulnerabilidad de divulgación de información del Administrador de conexión de acceso remoto de Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-28900 • CWE-126: Buffer Over-read •

CVSS: 6.5EPSS: 0%CPEs: 15EXPL: 0

CVE-2024-26226 – Windows Distributed File System (DFS) Information Disclosure Vulnerability

https://notcve.org/view.php?id=CVE-2024-26226

Windows Distributed File System (DFS) Information Disclosure Vulnerability Vulnerabilidad de divulgación de información del sistema de archivos distribuido (DFS) de Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26226 • CWE-125: Out-of-bounds Read •