NotCVE - data leakage

Page 339 of 10602 results (0.149 seconds)

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0

CVE-2023-4457

https://notcve.org/view.php?id=CVE-2023-4457

Grafana is an open-source platform for monitoring and observability. The Google Sheets data source plugin for Grafana, versions 0.9.0 to 1.2.2 are vulnerable to an information disclosure vulnerability. The plugin did not properly sanitize error messages, making it potentially expose the Google Sheet API-key that is configured for the data source. This vulnerability was fixed in version 1.2.2. • https://grafana.com/security/security-advisories/cve-2023-4457 • CWE-209: Generation of Error Message Containing Sensitive Information •

CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0

CVE-2023-33836 – IBM Security Verify Governance information disclosure

https://notcve.org/view.php?id=CVE-2023-33836

IBM Security Verify Governance 10.0 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. • https://https://exchange.xforce.ibmcloud.com/vulnerabilities/256016 https://www.ibm.com/support/pages/node/7047640 • CWE-798: Use of Hard-coded Credentials •

CVSS: 4.4EPSS: 0%CPEs: 1EXPL: 0

CVE-2023-35013 – IBM Security Verify Governance information disclosure

https://notcve.org/view.php?id=CVE-2023-35013

IBM Security Verify Governance 10.0, Identity Manager could allow a local privileged user to obtain sensitive information from source code. IBM X-Force ID: 257769. IBM Security Verify Governance 10.0, Identity Manager podría permitir que un usuario privilegiado local obtenga información confidencial del código fuente. ID de IBM X-Force: 257769. • https://exchange.xforce.ibmcloud.com/vulnerabilities/257769 https://www.ibm.com/support/pages/node/7050358 • CWE-540: Inclusion of Sensitive Information in Source Code CWE-668: Exposure of Resource to Wrong Sphere •

CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0

CVE-2023-30994 – IBM QRadar SIEM information disclosure

https://notcve.org/view.php?id=CVE-2023-30994

IBM QRadar SIEM 7.5.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 254138 IBM QRadar SIEM 7.5.0 utiliza algoritmos criptográficos más débiles de lo esperado que podrían permitir a un atacante descifrar información altamente confidencial. IBM X-Force ID: 254138 • https://exchange.xforce.ibmcloud.com/vulnerabilities/254138 https://www.ibm.com/support/pages/node/7049133 • CWE-327: Use of a Broken or Risky Cryptographic Algorithm •

CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0

CVE-2022-43868 – IBM Security Verify Access information disclosure

https://notcve.org/view.php?id=CVE-2022-43868

IBM Security Verify Access OIDC Provider could disclose directory information that could aid attackers in further attacks against the system. IBM X-Force ID: 239445. IBM Security Verify Access OIDC Provider podría revelar información de directorio que podría ayudar a los atacantes en futuros ataques contra el sistema. ID de IBM X-Force: 239445. • https://exchange.xforce.ibmcloud.com/vulnerabilities/239445 https://www.ibm.com/support/pages/node/7028513 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •

1...337 338 339 340 341