CVSS: 6.8EPSS: 0%CPEs: 2EXPL: 1CVE-2023-34724 – TECHView LA5570 Wireless Gateway 1.0.19_T53 Traversal / Privilege Escalation
https://notcve.org/view.php?id=CVE-2023-34724
TECHView LA5570 Wireless Gateway version 1.0.19_T53 suffers from directory traversal, privilege escalation, and information disclosure vulnerabilities. • http://packetstormsecurity.com/files/174553/TECHView-LA5570-Wireless-Gateway-1.0.19_T53-Traversal-Privilege-Escalation.html https://www.exploitsecurity.io/post/cve-2023-34723-cve-2023-34724-cve-2023-34725 https://www.jaycar.com.au/wireless-gateway-home-automation-controller/p/LA5570 • CWE-863: Incorrect Authorization •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2022-43904 – IBM Security Guardium information disclosure
https://notcve.org/view.php?id=CVE-2022-43904
IBM Security Guardium 11.3 and 11.4 could disclose sensitive information to an attacker due to improper restriction of excessive authentication attempts. IBM X-Force ID: 240895. IBM Security Guardium 11.3 y 11.4 podría revelar información confidencial a un atacante debido a la restricción inadecuada de intentos de autenticación excesivos. ID de IBM X-Force: 240895. • https://exchange.xforce.ibmcloud.com/vulnerabilities/240895 https://https://www.ibm.com/support/pages/node/7028509 • CWE-307: Improper Restriction of Excessive Authentication Attempts •
CVSS: 5.3EPSS: 0%CPEs: 3EXPL: 0CVE-2023-30437 – IBM Security Guardium information disclosure
https://notcve.org/view.php?id=CVE-2023-30437
IBM Security Guardium 11.3, 11.4, and 11.5 could allow an unauthorized user to enumerate usernames by sending a specially crafted HTTP request. IBM X-Force ID: 252293. IBM Security Guardium 11.3, 11.4 y 11.5 podría permitir a un usuario no autorizado enumerar nombres de usuario enviando una solicitud HTTP especialmente manipulada. ID de IBM X-Force: 252293. • https://exchange.xforce.ibmcloud.com/vulnerabilities/252293 https://www.ibm.com/support/pages/node/7028506 •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-38730 – IBM Spectrum Copy Data Management information disclosure
https://notcve.org/view.php?id=CVE-2023-38730
IBM Storage Copy Data Management 2.2.0.0 through 2.2.19.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 262268. IBM Storage Copy Data Management v2.2.0.0 hasta v2.2.19.0 utiliza algoritmos criptográficos más débiles de los esperado que podrían permitir a un atacante descifrar información altamente sensible. ID de IBM X-Force: 262268. • https://exchange.xforce.ibmcloud.com/vulnerabilities/262268 https://www.ibm.com/support/pages/node/7028841 • CWE-327: Use of a Broken or Risky Cryptographic Algorithm •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2023-25848 – BUG-000158039 - There is an information disclosure issue in ArcGIS Server.
https://notcve.org/view.php?id=CVE-2023-25848
ArcGIS Enterprise Server versions 11.0 and below have an information disclosure vulnerability where a remote, unauthorized attacker may submit a crafted query that may result in a low severity information disclosure issue. The information disclosed is limited to a single attribute in a database connection string. • https://www.esri.com/arcgis-blog/products/trust-arcgis/announcements/arcgis-server-map-and-feature-service-security-2023-update-1-patch • CWE-319: Cleartext Transmission of Sensitive Information •