CVSS: 3.7EPSS: 0%CPEs: 1EXPL: 0CVE-2023-32335 – IBM Maximo Application Suite information disclosure
https://notcve.org/view.php?id=CVE-2023-32335
This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referrer header or browser history. • https://exchange.xforce.ibmcloud.com/vulnerabilities/266875 https://www.ibm.com/support/pages/node/7138684 https://www.ibm.com/support/pages/node/7138686 • CWE-598: Use of GET Request Method With Sensitive Query Strings •
CVSS: 5.1EPSS: 0%CPEs: -EXPL: 0CVE-2023-43043 – IBM Maximo Application Suite information disclosure
https://notcve.org/view.php?id=CVE-2023-43043
IBM Maximo Application Suite - Maximo Mobile for EAM 8.10 and 8.11 could disclose sensitive information to a local user. IBM X-Force ID: 266875. IBM Maximo Application Suite: Maximo Mobile para EAM 8.10 y 8.11 podría revelar información confidencial a un usuario local. ID de IBM X-Force: 266875. • https://exchange.xforce.ibmcloud.com/vulnerabilities/266875 https://www.ibm.com/support/pages/node/7138286 • CWE-532: Insertion of Sensitive Information into Log File •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-1137 – TIBCO ActiveSpaces Information Leak Vulnerability
https://notcve.org/view.php?id=CVE-2024-1137
The Proxy and Client components of TIBCO Software Inc.'s TIBCO ActiveSpaces - Enterprise Edition contain a vulnerability that theoretically allows an Active Spaces client to passively observe data traffic to other clients. Affected releases are TIBCO Software Inc.'s TIBCO ActiveSpaces - Enterprise Edition: versions 4.4.0 through 4.9.0. Los componentes Proxy y Cliente de TIBCO ActiveSpaces - Enterprise Edition de TIBCO Software Inc. contienen una vulnerabilidad que, en teoría, permite a un cliente de Active Spaces observar pasivamente el tráfico de datos hacia otros clientes. • https://community.tibco.com/advisories/tibco-security-advisory-march-12-2024-tibco-activespaces-cve-2024-1137-r208 •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-26204 – Outlook for Android Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-26204
Outlook for Android Information Disclosure Vulnerability Vulnerabilidad de divulgación de información de Outlook para Android • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26204 • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 5.5EPSS: 0%CPEs: 25EXPL: 0CVE-2024-26177 – Windows Kernel Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-26177
Windows Kernel Information Disclosure Vulnerability Vulnerabilidad de divulgación de información del kernel de Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26177 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •