CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2023-40124
https://notcve.org/view.php?id=CVE-2023-40124
15 Feb 2024 — This could lead to local information disclosure of photos or other images with no additional execution privileges needed. • https://android.googlesource.com/platform/frameworks/base/+/86c8421c1181816b6cb333eb62a78e32290c4b17 • CWE-125: Out-of-bounds Read •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2023-40113
https://notcve.org/view.php?id=CVE-2023-40113
15 Feb 2024 — This could lead to local information disclosure with no additional execution privileges needed. • https://android.googlesource.com/platform/packages/providers/TelephonyProvider/+/64ca6ba981745875dbf2064e0b2a47f8194c4f0a •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-40112
https://notcve.org/view.php?id=CVE-2023-40112
15 Feb 2024 — This could lead to local information disclosure of past print jobs or other print-related information, with no additional execution privileges needed. • https://android.googlesource.com/platform/packages/services/BuiltInPrintService/+/d7cb53cb5b47f4afdb84cb0e161d84fdc2c32ce7 • CWE-125: Out-of-bounds Read •
CVSS: 5.5EPSS: 0%CPEs: 5EXPL: 0CVE-2023-40105
https://notcve.org/view.php?id=CVE-2023-40105
15 Feb 2024 — This could lead to local information disclosure with no additional execution privileges needed. • https://android.googlesource.com/platform/frameworks/base/+/935eb5ed6be35860a99ea242fb753f687d54a308 • CWE-862: Missing Authorization •
CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 0CVE-2023-40104
https://notcve.org/view.php?id=CVE-2023-40104
15 Feb 2024 — This could lead to remote information disclosure with no additional execution privileges needed. • https://android.googlesource.com/platform/system/ca-certificates/+/91204b9fdbd77b3f27f94b73868607b2dccbfdad • CWE-295: Improper Certificate Validation •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-39245
https://notcve.org/view.php?id=CVE-2023-39245
15 Feb 2024 — DELL ESI (Enterprise Storage Integrator) for SAP LAMA, version 10.0, contains an information disclosure vulnerability in EHAC component. • https://www.dell.com/support/kbdoc/en-us/000216654/dsa-2023-299-security-update-for-dell-esi-enterprise-storage-integrator-for-sap-lama-multiple-security-vulnerabilities • CWE-319: Cleartext Transmission of Sensitive Information •
CVSS: 7.3EPSS: 0%CPEs: 1EXPL: 0CVE-2023-39244
https://notcve.org/view.php?id=CVE-2023-39244
15 Feb 2024 — DELL ESI (Enterprise Storage Integrator) for SAP LAMA, version 10.0, contains an information disclosure vulnerability in EHAC component. • https://www.dell.com/support/kbdoc/en-us/000216654/dsa-2023-299-security-update-for-dell-esi-enterprise-storage-integrator-for-sap-lama-multiple-security-vulnerabilities • CWE-284: Improper Access Control •
CVSS: 9.1EPSS: 0%CPEs: 5EXPL: 0CVE-2023-28078
https://notcve.org/view.php?id=CVE-2023-28078
15 Feb 2024 — A remote unauthenticated attacker could potentially exploit this vulnerability leading to information disclosure and a possible Denial of Service when a huge number of requests are sent to the switch. • https://www.dell.com/support/kbdoc/en-us/000216584/dsa-2023-124-security-update-for-dell-smartfabric-os10-multiple-vulnerabilities • CWE-923: Improper Restriction of Communication Channel to Intended Endpoints •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-25941 – jail(2) information leak
https://notcve.org/view.php?id=CVE-2024-25941
15 Feb 2024 — This gives rise to an information leak about processes outside the current jail. Attacker can get information about TTYs allocated on the host or in other jails. Effectively, the information printed by "pstat -t" may be leaked. • https://security.freebsd.org/advisories/FreeBSD-SA-24:02.tty.asc •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2023-46186 – IBM Jazz for Service Management information disclosure
https://notcve.org/view.php?id=CVE-2023-46186
14 Feb 2024 — IBM Jazz for Service Management 1.1.3.20 could allow an unauthorized user to obtain sensitive file information using forced browsing due to improper access controls. • https://exchange.xforce.ibmcloud.com/vulnerabilities/269929 • CWE-425: Direct Request ('Forced Browsing') •