CVSS: 7.1EPSS: 0%CPEs: 2EXPL: 0CVE-2024-57905 – iio: adc: ti-ads1119: fix information leak in triggered buffer
https://notcve.org/view.php?id=CVE-2024-57905
19 Jan 2025 — In the Linux kernel, the following vulnerability has been resolved: iio: adc: ti-ads1119: fix information leak in triggered buffer The 'scan' local struct is used to push data to user space from a triggered buffer, but it has a hole between the sample (unsigned int) and the timestamp. In the Linux kernel, the following vulnerability has been resolved: iio: adc: ti-ads1119: fix information leak in triggered buffer The 'scan' local struct is used to push data to user space from a t... • https://git.kernel.org/stable/c/a9306887eba41c5fe7232727a8147da3d3c4f83c •
CVSS: 4.3EPSS: 0%CPEs: 2EXPL: 0CVE-2024-45653 – IBM Sterling Connect:Direct Web Services information disclosure
https://notcve.org/view.php?id=CVE-2024-45653
19 Jan 2025 — IBM Sterling Connect:Direct Web Services 6.0, 6.1, 6.2, and 6.3 could disclose sensitive IP address information to authenticated users in responses that could be used in further attacks against the system. • https://www.ibm.com/support/pages/node/7174104 • CWE-201: Insertion of Sensitive Information Into Sent Data •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-47106 – IBM Jazz for Service Management information disclosure
https://notcve.org/view.php?id=CVE-2024-47106
18 Jan 2025 — IBM Jazz for Service Management 1.1.3 through 1.1.3.22 could allow a remote attacker to obtain sensitive information from improper access restrictions that could aid in further attacks against the system. • https://www.ibm.com/support/pages/node/7178507 • CWE-552: Files or Directories Accessible to External Parties •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-49354 – IBM Concert information disclosure
https://notcve.org/view.php?id=CVE-2024-49354
18 Jan 2025 — IBM Concert 1.0.0, 1.0.1, and 1.0.2 is vulnerable to sensitive information disclosure through specially crafted API Calls. • https://www.ibm.com/support/pages/node/7174120 • CWE-213: Exposure of Sensitive Information Due to Incompatible Policies •
CVSS: 4.6EPSS: 0%CPEs: 2EXPL: 0CVE-2024-49338 – IBM App Connect Enterprise information disclosure
https://notcve.org/view.php?id=CVE-2024-49338
18 Jan 2025 — IBM App Connect Enterprise 12.0.1.0 through 12.0.7.0and 13.0.1.0 under certain configurations could allow a privileged user to obtain JMS credentials. • https://www.ibm.com/support/pages/node/7175396 • CWE-1323: Improper Management of Sensitive Trace Data •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-11923 – Sensitive Information Disclosure in Fortra Application Hub Prior to version 1.3
https://notcve.org/view.php?id=CVE-2024-11923
17 Jan 2025 — Under certain log settings the IAM or CORE service will log credentials in the iam logfile in Fortra Application Hub (Formerly named Helpsystems One) prior to version 1.3 Under certain log settings the IAM or CORE service will log credentials in the iam logfile in Fortra Application Hub (Formerly named Helpsystems One) prior to version 1.3 • https://www.fortra.com/security/advisories/product-security/fi-2025-003 • CWE-532: Insertion of Sensitive Information into Log File •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2018-9379
https://notcve.org/view.php?id=CVE-2018-9379
17 Jan 2025 — This could lead to local information disclosure with no additional execution privileges needed. • https://source.android.com/security/bulletin/pixel/2018-06-01 •
CVSS: 4.4EPSS: 0%CPEs: 1EXPL: 0CVE-2018-9384
https://notcve.org/view.php?id=CVE-2018-9384
17 Jan 2025 — This could lead to local information disclosure with System execution privileges needed. • https://source.android.com/security/bulletin/pixel/2018-06-01 •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2018-9383
https://notcve.org/view.php?id=CVE-2018-9383
17 Jan 2025 — This could lead to local information disclosure with System execution privileges needed. • https://source.android.com/security/bulletin/pixel/2018-06-01 •
CVSS: 9.0EPSS: 0%CPEs: 3EXPL: 0CVE-2024-12142
https://notcve.org/view.php?id=CVE-2024-12142
17 Jan 2025 — CWE-200: Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists that could cause information disclosure of restricted web page, modification of web page and denial of service when specific web pages are modified and restricted functions are invoked. CWE-200: Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists that could cause information disclosure of restricted web page, modification of web page and denial of ser... • https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2025-014-05&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2025-014-05.pdf • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •