CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2023-40123
https://notcve.org/view.php?id=CVE-2023-40123
This could lead to local information disclosure with no additional execution privileges needed. • https://android.googlesource.com/platform/frameworks/base/+/7212a4bec2d2f1a74fa54a12a04255d6a183baa9 https://source.android.com/security/bulletin/2023-10-01 •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 1CVE-2023-40121
https://notcve.org/view.php?id=CVE-2023-40121
This could lead to local information disclosure with User execution privileges needed. • https://github.com/hshivhare67/platform_framework_base_AOSP6_r22_CVE-2023-40121 https://android.googlesource.com/platform/frameworks/base/+/3287ac2d2565dc96bf6177967f8e3aed33954253 https://source.android.com/security/bulletin/2023-10-01 • CWE-502: Deserialization of Untrusted Data •
CVSS: 7.6EPSS: 0%CPEs: 1EXPL: 0CVE-2022-3611
https://notcve.org/view.php?id=CVE-2022-3611
An information disclosure vulnerability has been identified in the Lenovo App Store which may allow some applications to gain unauthorized access to sensitive user data used by other unrelated applications. • https://iknow.lenovo.com.cn/detail/205280.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2023-46376
https://notcve.org/view.php?id=CVE-2023-46376
Zentao Biz version 8.7 and before is vulnerable to Information Disclosure. • https://narrow-payment-2cd.notion.site/zentao-8-7-has-information-disclosure-vulnerability-CVE-2023-46376-537fae3936b84af583b51b74e6010dd7 • CWE-312: Cleartext Storage of Sensitive Information •
CVSS: 7.5EPSS: 0%CPEs: 12EXPL: 0CVE-2023-46662 – Improper Access Control in Sielco PolyEco1000
https://notcve.org/view.php?id=CVE-2023-46662
Sielco PolyEco1000 is vulnerable to an information disclosure vulnerability due to improper access control enforcement. • https://www.cisa.gov/news-events/ics-advisories/icsa-23-299-07 • CWE-284: Improper Access Control •