CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2024-1938 – Debian Security Advisory 5634-1
https://notcve.org/view.php?id=CVE-2024-1938
29 Feb 2024 — (Severidad de seguridad de Chrome: alta) Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure. • https://chromereleases.googleblog.com/2024/02/stable-channel-update-for-desktop_27.html • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 5.9EPSS: 0%CPEs: -EXPL: 0CVE-2024-22251 – Out-of-bounds read vulnerability
https://notcve.org/view.php?id=CVE-2024-22251
27 Feb 2024 — A malicious actor with local administrative privileges on a virtual machine may trigger an out-of-bounds read leading to information disclosure. ... A malicious actor with local administrative privileges on a virtual machine may trigger an out-of-bounds read leading to information disclosure. • https://www.vmware.com/security/advisories/VMSA-2024-0005.html • CWE-125: Out-of-bounds Read •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-48680
https://notcve.org/view.php?id=CVE-2023-48680
27 Feb 2024 — Sensitive information disclosure due to excessive collection of system information. • https://security-advisory.acronis.com/advisories/SEC-5392 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-359: Exposure of Private Personal Information to an Unauthorized Actor •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-48678
https://notcve.org/view.php?id=CVE-2023-48678
27 Feb 2024 — Sensitive information disclosure due to insecure folder permissions. • https://security-advisory.acronis.com/advisories/SEC-2319 • CWE-276: Incorrect Default Permissions •
CVSS: 5.3EPSS: 0%CPEs: 2EXPL: 1CVE-2024-26144 – Possible Sensitive Session Information Leak in Active Storage
https://notcve.org/view.php?id=CVE-2024-26144
27 Feb 2024 — Starting with version 5.2.0, there is a possible sensitive session information leak in Active Storage. ... Certain proxies may cache the Set-Cookie, leading to an information leak. ... A flaw was found in Active Storage that may lead to a sensitive session information leak. ... Certain proxies may cache `Set-Cookie`, leading to an information leak. • https://discuss.rubyonrails.org/t/possible-sensitive-session-information-leak-in-active-storage/84945 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-0682 – Page Restrict <= 2.5.5 - Protection Mechanism Bypass
https://notcve.org/view.php?id=CVE-2024-0682
27 Feb 2024 — The Page Restrict plugin for WordPress is vulnerable to information disclosure in all versions up to, and including, 2.5.5. • https://wordpress.org/plugins/pagerestrict • CWE-693: Protection Mechanism Failure •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-0681 – Page Restriction WordPress (WP) – Protect WP Pages/Post <= 1.3.4 - Protection Mechanism Bypass
https://notcve.org/view.php?id=CVE-2024-0681
27 Feb 2024 — The Page Restriction WordPress (WP) – Protect WP Pages/Post plugin for WordPress is vulnerable to information disclosure in all versions up to, and including, 1.3.4. • https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3034414%40page-and-post-restriction&new=3034414%40page-and-post-restriction&sfp_email=&sfph_mail= • CWE-693: Protection Mechanism Failure •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-0680 – WP Private Content Plus <= 3.6 - Protection Mechanism Bypass
https://notcve.org/view.php?id=CVE-2024-0680
27 Feb 2024 — The WP Private Content Plus plugin for WordPress is vulnerable to information disclosure in all versions up to, and including, 3.6. • https://wordpress.org/plugins/wp-private-content-plus • CWE-693: Protection Mechanism Failure •
CVSS: 5.5EPSS: 0%CPEs: 8EXPL: 0CVE-2021-46906 – HID: usbhid: fix info leak in hid_submit_ctrl
https://notcve.org/view.php?id=CVE-2021-46906
26 Feb 2024 — In the Linux kernel, the following vulnerability has been resolved: HID: usbhid: fix info leak in hid_submit_ctrl In hid_submit_ctrl(), the way of calculating the report length doesn't take into account that report->size can be zero. In the Linux kernel, the following vulnerability has been resolved: HID: usbhid: fix info leak in hid_submit_ctrl In hid_submit_ctrl(), the way of calculating the report length doesn't take into account that report->size can be zero. ... When this ur... • https://git.kernel.org/stable/c/c5d3c142f2d57d40c55e65d5622d319125a45366 • CWE-668: Exposure of Resource to Wrong Sphere •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-1435 – WordPress Tainacan Plugin <= 0.20.6 is vulnerable to Sensitive Data Exposure
https://notcve.org/view.php?id=CVE-2024-1435
26 Feb 2024 — Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Tainacan.Org Tainacan.This issue affects Tainacan: from n/a through 0.20.6. ... The Tainacan plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 0.20.6. • https://patchstack.com/database/vulnerability/tainacan/wordpress-tainacan-plugin-0-20-6-sensitive-data-exposure-via-log-file-vulnerability? • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •