CVE-2023-42019 – IBM InfoSphere Information Server information disclosure
https://notcve.org/view.php?id=CVE-2023-42019
IBM InfoSphere Information Server 11.7 could allow a remote attacker to cause a denial of service due to improper input validation. IBM X-Force ID: 265161. IBM InfoSphere Information Server 11.7 podría permitir que un atacante remoto provoque una denegación de servicio debido a una validación de entrada incorrecta. ID de IBM X-Force: 265161. • https://exchange.xforce.ibmcloud.com/vulnerabilities/265569 https://www.ibm.com/support/pages/node/7067719 • CWE-311: Missing Encryption of Sensitive Data •
CVE-2023-43021 – IBM InfoSphere Information Server information disclosure
https://notcve.org/view.php?id=CVE-2023-43021
IBM InfoSphere Information Server 11.7 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 266167. IBM InfoSphere Information Server 11.7 podría permitir a un atacante remoto obtener información confidencial cuando se devuelve un mensaje de error técnico detallado en el navegador. Esta información podría usarse en futuros ataques contra el sistema. • https://exchange.xforce.ibmcloud.com/vulnerabilities/266167 https://www.ibm.com/support/pages/node/7074317 • CWE-209: Generation of Error Message Containing Sensitive Information •
CVE-2023-26024 – IBM Planning Analytics on Cloud Pak for Data information disclosure
https://notcve.org/view.php?id=CVE-2023-26024
IBM Planning Analytics on Cloud Pak for Data 4.0 could allow an attacker on a shared network to obtain sensitive information caused by insecure network communication. ... IBM Planning Analytics on Cloud Pak for Data 4.0 podría permitir que un atacante en una red compartida obtenga información confidencial causada por una comunicación de red insegura. • https://exchange.xforce.ibmcloud.com/vulnerabilities/247898 https://https://www.ibm.com/support/pages/node/7082784 https://www.ibm.com/support/pages/node/7082784 • CWE-327: Use of a Broken or Risky Cryptographic Algorithm •
CVE-2023-42006 – IBM i information disclosure
https://notcve.org/view.php?id=CVE-2023-42006
IBM Administration Runtime Expert for i 7.2, 7.3, 7.4, and 7.5 could allow a local user to obtain sensitive information caused by improper authority checks. IBM X-Force ID: 265266. IBM Administration Runtime Expert para i 7.2, 7.3, 7.4 y 7.5 podría permitir a un usuario local obtener información confidencial causada por comprobaciones de autoridad inadecuadas. ID de IBM X-Force: 265266. • https://exchange.xforce.ibmcloud.com/vulnerabilities/265266 https://www.ibm.com/support/pages/node/7085891 • CWE-863: Incorrect Authorization •
CVE-2023-45066 – WordPress WP Ultimate Exporter Plugin <= 2.4.1 is vulnerable to Sensitive Data Exposure
https://notcve.org/view.php?id=CVE-2023-45066
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Smackcoders Export All Posts, Products, Orders, Refunds & Users.This issue affects Export All Posts, Products, Orders, Refunds & Users: from n/a through 2.4.1. Exposición de información confidencial a una vulnerabilidad de actor no autorizado en Smackcoders Exportar todas las publicaciones, productos, pedidos, reembolsos y usuarios. Este problema afecta la exportación de todas las publicaciones, productos, pedidos, reembolsos y usuarios: desde n/a hasta 2.4.1. • https://patchstack.com/database/vulnerability/wp-ultimate-exporter/wordpress-export-all-posts-products-orders-refunds-users-plugin-2-2-sensitive-data-exposure-vulnerability? • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •