CVSS: 5.3EPSS: 0%CPEs: 5EXPL: 0CVE-2023-29259 – IBM Sterling Connect:Express for UNIX information disclosure
https://notcve.org/view.php?id=CVE-2023-29259
IBM Sterling Connect:Express for UNIX 1.5 browser UI is vulnerable to attacks that rely on the use of cookies without the SameSite attribute. IBM X-Force ID: 252055. • https://exchange.xforce.ibmcloud.com/vulnerabilities/252055 https://www.ibm.com/support/pages/node/7010921 •
CVSS: 5.3EPSS: 0%CPEs: 8EXPL: 0CVE-2023-35900 – IBM Robotic Process Automation information disclosure
https://notcve.org/view.php?id=CVE-2023-35900
IBM Robotic Process Automation for Cloud Pak 21.0.0 through 21.0.7.4 and 23.0.0 through 23.0.5 is vulnerable to disclosing server version information which may be used to determine software vulnerabilities at the operating system level. IBM X-Force ID: 259368. • https://exchange.xforce.ibmcloud.com/vulnerabilities/259368 https://www.ibm.com/support/pages/node/7010895 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 6.5EPSS: 0%CPEs: 4EXPL: 0CVE-2023-35898 – IBM InfoSphere Information Server information disclosure
https://notcve.org/view.php?id=CVE-2023-35898
IBM InfoSphere Information Server 11.7 could allow an authenticated user to obtain sensitive information due to an insecure security configuration in InfoSphere Data Flow Designer. ... IBM InfoSphere Information Server v11.7 podría permitir a un usuario autenticado obtener información confidencial debido a una configuración de seguridad insegura en "InfoSphere Data Flow Designer". • https://exchange.xforce.ibmcloud.com/vulnerabilities/259352 https://www.ibm.com/support/pages/node/7009205 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2021-4428 – what3words Autosuggest Plugin Setting class-w3w-autosuggest-public.php enqueue_scripts information disclosure
https://notcve.org/view.php?id=CVE-2021-4428
The manipulation leads to information disclosure. ... Mit der Manipulation mit unbekannten Daten kann eine information disclosure-Schwachstelle ausgenutzt werden. ... This can allow authenticated attackers, with administrator-level privileges and above, to extract sensitive data. • https://github.com/what3words/wordpress-autosuggest-plugin/commit/dd59cbac5f86057d6a73b87007c08b8bfa0c32ac https://github.com/what3words/wordpress-autosuggest-plugin/pull/20 https://github.com/what3words/wordpress-autosuggest-plugin/releases/tag/v4.0.1 https://vuldb.com/?ctiid.234247 https://vuldb.com/?id.234247 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.3EPSS: 0%CPEs: 4EXPL: 0CVE-2023-33857 – IBM InfoSphere Information Server information disclosure
https://notcve.org/view.php?id=CVE-2023-33857
IBM InfoSphere Information Server 11.7 could allow a remote attacker to obtain system information using a specially crafted query that could aid in further attacks against the system. IBM X-Force ID: 257695. IBM InfoSphere Information Server v11.7 podría permitir a un atacante remoto obtener información del sistema utilizando una consulta especialmente manipulada que podría ayudar en futuros ataques contra el sistema. ID de IBM X-Force: 257695. • https://exchange.xforce.ibmcloud.com/vulnerabilities/257695 https://www.ibm.com/support/pages/node/7007059 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •