CVE-2023-46175 – IBM Cloud Pak for Multicloud Management information disclosure
https://notcve.org/view.php?id=CVE-2023-46175
IBM Cloud Pak for Multicloud Management 2.3 through 2.3 FP8 stores user credentials in a log file plain clear text which can be read by a privileged user. • https://www.ibm.com/support/pages/node/7170411 • CWE-532: Insertion of Sensitive Information into Log File •
CVE-2024-4278 – Incorrect Synchronization in GitLab
https://notcve.org/view.php?id=CVE-2024-4278
An information disclosure issue has been discovered in GitLab EE affecting all versions starting from 16.5 prior to 17.2.8, from 17.3 prior to 17.3.4, and from 17.4 prior to 17.4.1. • https://gitlab.com/gitlab-org/gitlab/-/issues/458484 https://hackerone.com/reports/2466205 • CWE-821: Incorrect Synchronization •
CVE-2024-0132
https://notcve.org/view.php?id=CVE-2024-0132
A successful exploit of this vulnerability may lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering. • https://nvidia.custhelp.com/app/answers/detail/a_id/5582 • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •
CVE-2024-9256 – Foxit PDF Reader AcroForm Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-9256
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. •
CVE-2024-9252 – Foxit PDF Reader AcroForm Use-After-Free Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-9252
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. •