Page 32 of 11331 results (0.182 seconds)

CVSS: 4.6EPSS: 0%CPEs: 1EXPL: 0

A low privileged attacker with remote access could potentially exploit this vulnerability, leading to information disclosure. • https://www.dell.com/support/kbdoc/en-us/000237211/dsa-2024-407-dell-secure-connect-gateway-security-update-for-multiple-third-party-component-vulnerabilities • CWE-327: Use of a Broken or Risky Cryptographic Algorithm •

CVSS: 8.7EPSS: 0%CPEs: 1EXPL: 0

The affected product is vulnerable to an attacker being able to use commands without providing a password which may allow an attacker to leak information. • https://www.cisa.gov/news-events/ics-advisories/icsa-24-291-01 • CWE-306: Missing Authentication for Critical Function •

CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0

In JetBrains Ktor before 3.0.0 improper caching in HttpCache Plugin could lead to response information disclosure • https://www.jetbrains.com/privacy-security/issues-fixed • CWE-524: Use of Cache Containing Sensitive Information

CVSS: 5.1EPSS: 0%CPEs: 1EXPL: 0

SolarWinds Kiwi CatTools is susceptible to a sensitive data disclosure vulnerability when a non-default setting has been enabled for troubleshooting purposes. • https://www.solarwinds.com/trust-center/security-advisories/CVE-2024-45713 • CWE-209: Generation of Error Message Containing Sensitive Information

CVSS: 5.7EPSS: 0%CPEs: 1EXPL: 0

Sensitive information disclosure due to spell-jacking. • https://security-advisory.acronis.com/advisories/SEC-5129 • CWE-359: Exposure of Private Personal Information to an Unauthorized Actor •