CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2021-27769 – HCL Sametime is vulnerable to an information disclosure
https://notcve.org/view.php?id=CVE-2021-27769
12 May 2022 — Information leakage occurs when a website reveals information that could aid an attacker to further exploit the system. This information may or may not be sensitive and does not automatically mean a breach is likely to occur. Overall, any information that could be used for an attack should be limited whenever possible. Un filtrado de información es producido cuando un sitio web revela información que podría ayudar a un atacante a seguir explotando el sistema. Esta información puede ser o no confidencial y n... • https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0097430 • CWE-472: External Control of Assumed-Immutable Web Parameter •
CVSS: 5.5EPSS: 0%CPEs: 71EXPL: 0CVE-2021-26361
https://notcve.org/view.php?id=CVE-2021-26361
12 May 2022 — A malicious or compromised User Application (UApp) or AGESA Boot Loader (ABL) could be used by an attacker to exfiltrate arbitrary memory from the ASP stage 2 bootloader potentially leading to information disclosure. • https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1027 •
CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 1CVE-2022-26020
https://notcve.org/view.php?id=CVE-2022-26020
12 May 2022 — An information disclosure vulnerability exists in the router configuration export functionality of InHand Networks InRouter302 V3.5.4. • https://talosintelligence.com/vulnerability_reports/TALOS-2022-1474 • CWE-321: Use of Hard-coded Cryptographic Key CWE-798: Use of Hard-coded Credentials •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 1CVE-2022-25172
https://notcve.org/view.php?id=CVE-2022-25172
12 May 2022 — An information disclosure vulnerability exists in the web interface session cookie functionality of InHand Networks InRouter302 V3.5.4. • https://talosintelligence.com/vulnerability_reports/TALOS-2022-1470 • CWE-732: Incorrect Permission Assignment for Critical Resource CWE-1004: Sensitive Cookie Without 'HttpOnly' Flag •
CVSS: 5.5EPSS: 0%CPEs: 346EXPL: 0CVE-2021-0155
https://notcve.org/view.php?id=CVE-2021-0155
12 May 2022 — Unchecked return value in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable information disclosure via local access. • https://security.netapp.com/advisory/ntap-20220818-0003 • CWE-252: Unchecked Return Value •
CVSS: 5.5EPSS: 0%CPEs: 797EXPL: 0CVE-2022-21151
https://notcve.org/view.php?id=CVE-2022-21151
12 May 2022 — Processor optimization removal or modification of security-critical code for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. • https://security.netapp.com/advisory/ntap-20220826-0003 •
CVSS: 5.5EPSS: 0%CPEs: 16EXPL: 0CVE-2021-33149
https://notcve.org/view.php?id=CVE-2021-33149
12 May 2022 — Observable behavioral discrepancy in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access. • https://security.netapp.com/advisory/ntap-20220818-0002 • CWE-203: Observable Discrepancy •
CVSS: 2.4EPSS: 0%CPEs: 918EXPL: 0CVE-2022-0005
https://notcve.org/view.php?id=CVE-2022-0005
12 May 2022 — Sensitive information accessible by physical probing of JTAG interface for some Intel(R) Processors with SGX may allow an unprivileged user to potentially enable information disclosure via physical access. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00614.html • CWE-319: Cleartext Transmission of Sensitive Information •
CVSS: 5.5EPSS: 0%CPEs: 55EXPL: 0CVE-2021-33117
https://notcve.org/view.php?id=CVE-2021-33117
12 May 2022 — Improper access control for some 3rd Generation Intel(R) Xeon(R) Scalable Processors before BIOS version MR7, may allow a local attacker to potentially enable information disclosure via local access. • https://security.netapp.com/advisory/ntap-20220818-0001 •
CVSS: 4.6EPSS: 0%CPEs: 14EXPL: 0CVE-2021-33082
https://notcve.org/view.php?id=CVE-2021-33082
12 May 2022 — Sensitive information in resource not removed before reuse in firmware for some Intel(R) SSD and Intel(R) Optane(TM) SSD Products may allow an unauthenticated user to potentially enable information disclosure via physical access. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00563.html • CWE-212: Improper Removal of Sensitive Information Before Storage or Transfer •