Page 20 of 10841 results (0.276 seconds)

CVSS: 5.9EPSS: 0%CPEs: 1EXPL: 0

IBM TXSeries for Multiplatforms 10.1 could allow an attacker to obtain sensitive information from the query string of an HTTP GET method to process a request which could be obtained using man in the middle techniques. • https://www.ibm.com/support/pages/node/7174572 • CWE-598: Use of GET Request Method With Sensitive Query Strings •

CVSS: 8.7EPSS: 0%CPEs: 1EXPL: 0

A successful exploit of this vulnerability may lead to denial of service, data tampering, and limited information disclosure. • https://nvidia.custhelp.com/app/answers/detail/a_id/5562 • CWE-274: Improper Handling of Insufficient Privileges •

CVSS: 8.9EPSS: 0%CPEs: 2EXPL: 0

A successful exploit of this vulnerability may lead to denial of service, data tampering, and limited information disclosure. • https://nvidia.custhelp.com/app/answers/detail/a_id/5562 • CWE-274: Improper Handling of Insufficient Privileges •

CVSS: 7.5EPSS: 0%CPEs: -EXPL: 0

Yealink Meeting Server before V26.0.0.67 is vulnerable to sensitive data exposure in the server response via sending HTTP request with enterprise ID. • http://yealink.com https://www.yealink.com/en/trust-center/security-advisories/e5c848c55b894231 • CWE-922: Insecure Storage of Sensitive Information

CVSS: 5.3EPSS: 0%CPEs: -EXPL: 0

The LevelOne WBR-6012 router has an information disclosure vulnerability in its web application, which allows unauthenticated users to access a verbose system log page and obtain sensitive data, such as memory addresses and IP addresses for login attempts. • https://talosintelligence.com/vulnerability_reports/TALOS-2024-1985 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •