CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-0407 – Certain HP Enterprise LaserJet, HP LaserJet Managed Printers – Potential Information Disclosure
https://notcve.org/view.php?id=CVE-2024-0407
Certain HP Enterprise LaserJet, and HP LaserJet Managed Printers are potentially vulnerable to information disclosure, when connections made by the device back to services enabled by some solutions may have been trusted without the appropriate CA certificate in the device's certificate store. • https://support.hp.com/us-en/document/ish_10174094-10174120-16 •
CVSS: 4.0EPSS: 0%CPEs: 1EXPL: 0CVE-2023-50306 – IBM Common Licensing information disclosure
https://notcve.org/view.php?id=CVE-2023-50306
IBM Common Licensing 9.0 could allow a local user to enumerate usernames due to an observable response discrepancy. IBM X-Force ID: 273337. IBM Common Licensing 9.0 podría permitir a un usuario local enumerar nombres de usuario debido a una discrepancia de respuesta observable. ID de IBM X-Force: 273337. • https://exchange.xforce.ibmcloud.com/vulnerabilities/273337 https://www.ibm.com/support/pages/node/7120660 • CWE-204: Observable Response Discrepancy •
CVSS: 9.1EPSS: 0%CPEs: -EXPL: 0CVE-2024-1608 – OPPO Usercenter Credit sdk
https://notcve.org/view.php?id=CVE-2024-1608
In OPPO Usercenter Credit SDK, there's a possible escalation of privilege due to loose permission check, This could lead to application internal information leak w/o user interaction. • https://security.oppo.com/en/noticeDetail?notice_only_key=NOTICE-1759867611954552832 • CWE-280: Improper Handling of Insufficient Permissions or Privileges •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-25150
https://notcve.org/view.php?id=CVE-2024-25150
Information disclosure vulnerability in the Control Panel in Liferay Portal 7.2.0 through 7.4.2, and older unsupported versions, and Liferay DXP 7.3 before update 4, 7.2 before fix pack 19, and older unsupported versions allows remote authenticated users to obtain a user's full name from the page's title by enumerating user screen names. • https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/cve-2024-25150 • CWE-201: Insertion of Sensitive Information Into Sent Data •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-0593 – Simple Job Board <= 2.10.8 - Missing Authorization to Unauthenticated Information Disclosure
https://notcve.org/view.php?id=CVE-2024-0593
This makes it possible for unauthenticated attackers to fetch arbitrary posts, which can be password protected or private and contain sensitive information. • https://plugins.trac.wordpress.org/changeset/3038476/simple-job-board/trunk/includes/class-simple-job-board-ajax.php https://www.wordfence.com/threat-intel/vulnerabilities/id/0a28a161-3dbc-4ef0-a2ce-4c102cf3cbb0?source=cve • CWE-862: Missing Authorization •