CVSS: 3.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-27326 – PDF-XChange Editor XPS File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-27326
PDF-XChange Editor XPS File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. ... The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated object. ... The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated object. • https://www.zerodayinitiative.com/advisories/ZDI-24-204 • CWE-125: Out-of-bounds Read •
CVSS: 2.4EPSS: 0%CPEs: 1EXPL: 0CVE-2023-50955 – IBM InfoSphere Information Server information disclosure
https://notcve.org/view.php?id=CVE-2023-50955
IBM InfoSphere Information Server 11.7 could allow an authenticated privileged user to obtain the absolute path of the web server installation which could aid in further attacks against the system. IBM X-Force ID: 275777. IBM InfoSphere Information Server 11.7 podría permitir que un usuario privilegiado autenticado obtenga la ruta absoluta de la instalación del servidor web, lo que podría ayudar en futuros ataques contra el sistema. ID de IBM X-Force: 275777. • https://exchange.xforce.ibmcloud.com/vulnerabilities/275777 https://www.ibm.com/support/pages/node/7116610 • CWE-36: Absolute Path Traversal •
CVSS: -EPSS: 0%CPEs: 1EXPL: 0CVE-2024-0407 – Certain HP Enterprise LaserJet, HP LaserJet Managed Printers – Potential Information Disclosure
https://notcve.org/view.php?id=CVE-2024-0407
Certain HP Enterprise LaserJet, and HP LaserJet Managed Printers are potentially vulnerable to information disclosure, when connections made by the device back to services enabled by some solutions may have been trusted without the appropriate CA certificate in the device's certificate store. • https://support.hp.com/us-en/document/ish_10174094-10174120-16 •
CVSS: 4.0EPSS: 0%CPEs: 1EXPL: 0CVE-2023-50306 – IBM Common Licensing information disclosure
https://notcve.org/view.php?id=CVE-2023-50306
IBM Common Licensing 9.0 could allow a local user to enumerate usernames due to an observable response discrepancy. IBM X-Force ID: 273337. IBM Common Licensing 9.0 podría permitir a un usuario local enumerar nombres de usuario debido a una discrepancia de respuesta observable. ID de IBM X-Force: 273337. • https://exchange.xforce.ibmcloud.com/vulnerabilities/273337 https://www.ibm.com/support/pages/node/7120660 • CWE-204: Observable Response Discrepancy •
CVSS: 9.1EPSS: 0%CPEs: -EXPL: 0CVE-2024-1608 – OPPO Usercenter Credit sdk
https://notcve.org/view.php?id=CVE-2024-1608
In OPPO Usercenter Credit SDK, there's a possible escalation of privilege due to loose permission check, This could lead to application internal information leak w/o user interaction. • https://security.oppo.com/en/noticeDetail?notice_only_key=NOTICE-1759867611954552832 • CWE-280: Improper Handling of Insufficient Permissions or Privileges •