Page 357 of 10611 results (0.055 seconds)

CVSS: 8.2EPSS: 0%CPEs: -EXPL: 0

CVE-2023-44412 – D-Link D-View addDv7Probe XML External Entity Processing Information Disclosure Vulnerability

https://notcve.org/view.php?id=CVE-2023-44412

D-Link D-View addDv7Probe XML External Entity Processing Information Disclosure Vulnerability. • https://www.zerodayinitiative.com/advisories/ZDI-23-1510 • CWE-611: Improper Restriction of XML External Entity Reference •

CVSS: 6.5EPSS: 0%CPEs: -EXPL: 0

CVE-2023-42129 – A10 Thunder ADC ShowTechDownloadView Directory Traversal Information Disclosure Vulnerability

https://notcve.org/view.php?id=CVE-2023-42129

A10 Thunder ADC ShowTechDownloadView Directory Traversal Information Disclosure Vulnerability. ... A10 Thunder ADC ShowTechDownloadView Directory Traversal Information Disclosure Vulnerability. • https://support.a10networks.com/support/security_advisory/a10-acos-file-access-vulnerability https://www.zerodayinitiative.com/advisories/ZDI-23-1495 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0

CVE-2022-22447 – IBM Disconnected Log Collector information disclosure

https://notcve.org/view.php?id=CVE-2022-22447

IBM Disconnected Log Collector 1.0 through 1.8.2 is vulnerable to potential security misconfigurations that could disclose unintended information. IBM X-Force ID: 224648. IBM Disconnected Log Collector 1.0 a 1.8.2 es vulnerable a posibles errores de configuración de seguridad que podrían revelar información no deseada. ID de IBM X-Force: 224648. • https://exchange.xforce.ibmcloud.com/vulnerabilities/224648 https://https://www.ibm.com/support/pages/node/7042313 https://www.ibm.com/support/pages/node/7042313 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •

CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0

CVE-2023-4103 – Multiple vulnerabilities in IDM Sistemas QSige

https://notcve.org/view.php?id=CVE-2023-4103

It has been identified that the web application does not correctly filter input parameters, allowing SQL injections, DoS or information disclosure. • https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-idm-sistemas-qsige • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •

CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0

CVE-2022-47892 – Information disclosure in NetMan 204

https://notcve.org/view.php?id=CVE-2022-47892

All versions of NetMan 204 could allow an unauthenticated remote attacker to read a file (config.cgi) containing sensitive information, like credentials. Todas las versiones de NetMan 204 podrían permitir que un atacante remoto no autenticado lea un archivo (config.cgi) que contenga información confidencial, como credenciales. • https://www.incibe.es/incibe-cert/alerta-temprana/avisos-sci/multiples-vulnerabilidades-netman-204-riello-ups • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-319: Cleartext Transmission of Sensitive Information •