CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-27345 – Kofax Power PDF PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-27345
01 Mar 2024 — Kofax Power PDF PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Kofax Power PDF. ... This vulnerability allows remote attackers to disclose sensitive information on affected installations of Kofax Power PDF. • https://www.zerodayinitiative.com/advisories/ZDI-24-225 • CWE-125: Out-of-bounds Read •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-27346 – Kofax Power PDF PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-27346
01 Mar 2024 — Kofax Power PDF PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Kofax Power PDF. ... This vulnerability allows remote attackers to disclose sensitive information on affected installations of Kofax Power PDF. • https://www.zerodayinitiative.com/advisories/ZDI-24-226 • CWE-125: Out-of-bounds Read •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-27336 – Kofax Power PDF PNG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-27336
01 Mar 2024 — Kofax Power PDF PNG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Kofax Power PDF. ... This vulnerability allows remote attackers to disclose sensitive information on affected installations of Kofax Power PDF. • https://www.zerodayinitiative.com/advisories/ZDI-24-218 • CWE-125: Out-of-bounds Read •
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0CVE-2024-26196 – Microsoft Edge for Android (Chromium-based) Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-26196
29 Feb 2024 — Microsoft Edge for Android (Chromium-based) Information Disclosure Vulnerability Vulnerabilidad de divulgación de información en Microsoft Edge para Android (basado en Chromium) • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26196 • CWE-259: Use of Hard-coded Password •
CVSS: 6.3EPSS: 0%CPEs: 8EXPL: 0CVE-2023-52475 – Input: powermate - fix use-after-free in powermate_config_complete
https://notcve.org/view.php?id=CVE-2023-52475
29 Feb 2024 — This issue may allow an attacker to crash the system at device disconnect, possibly leading to a kernel information leak problem. • https://git.kernel.org/stable/c/8677575c4f39d65bf0d719b5d20e8042e550ccb9 • CWE-416: Use After Free •
CVSS: 5.9EPSS: 0%CPEs: 1EXPL: 0CVE-2021-39090 – IBM Cloud Pak for Security information disclosure
https://notcve.org/view.php?id=CVE-2021-39090
29 Feb 2024 — IBM Cloud Pak for Security (CP4S) 1.10.0.0 through 1.10.6.0 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in the middle techniques. • https://exchange.xforce.ibmcloud.com/vulnerabilities/216388 • CWE-311: Missing Encryption of Sensitive Data •
CVSS: 4.0EPSS: 0%CPEs: 1EXPL: 0CVE-2023-27545 – IBM Watson CloudPak for Data Data Stores information disclosure
https://notcve.org/view.php?id=CVE-2023-27545
29 Feb 2024 — IBM Watson CloudPak for Data Data Stores information disclosure 4.6.0 allows web pages to be stored locally which can be read by another user on the system. • https://exchange.xforce.ibmcloud.com/vulnerabilities/248947 • CWE-525: Use of Web Browser Cache Containing Sensitive Information •
CVSS: 6.4EPSS: 0%CPEs: 1EXPL: 0CVE-2023-38372 – IBM Watson IoT Platform information disclosure
https://notcve.org/view.php?id=CVE-2023-38372
29 Feb 2024 — An unauthorized attacker who has obtained an IBM Watson IoT Platform 1.0 security authentication token can use it to impersonate an authorized platform user. IBM X-Force ID: 261201. Un atacante no autorizado que haya obtenido un token de autenticación de seguridad de IBM Watson IoT Platform 1.0 puede utilizarlo para hacerse pasar por un usuario de plataforma autorizado. ID de IBM X-Force: 261201. • https://exchange.xforce.ibmcloud.com/vulnerabilities/261201 • CWE-287: Improper Authentication •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 1CVE-2024-1939 – Debian Security Advisory 5634-1
https://notcve.org/view.php?id=CVE-2024-1939
29 Feb 2024 — (Severidad de seguridad de Chrome: alta) Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure. • https://github.com/rycbar77/CVE-2024-1939 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 6.4EPSS: 0%CPEs: 2EXPL: 0CVE-2024-1120 – NextMove Lite – Thank You Page for WooCommerce & Finale Lite – Sales Countdown Timer & Discount for WooCommerce <= 2.17.0 - Missing Authorization to Unauthenticated System Information Disclosure
https://notcve.org/view.php?id=CVE-2024-1120
29 Feb 2024 — This makes it possible for unauthenticated attackers to export system information that can aid attackers in an attack. • https://plugins.trac.wordpress.org/browser/finale-woocommerce-sales-countdown-timer-discount/trunk/includes/wcct-xl-support.php#L710 • CWE-862: Missing Authorization •