CVSS: 5.3EPSS: 0%CPEs: 5EXPL: 0CVE-2023-29355 – DHCP Server Service Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2023-29355
DHCP Server Service Information Disclosure Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29355 • CWE-668: Exposure of Resource to Wrong Sphere •
CVSS: 5.5EPSS: 0%CPEs: 10EXPL: 0CVE-2023-33139 – Visual Studio Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2023-33139
Visual Studio Information Disclosure Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33139 • CWE-125: Out-of-bounds Read •
CVSS: 4.7EPSS: 0%CPEs: 2EXPL: 0CVE-2023-2639 – Rockwell Automation FactoryTalk System Services Vulnerable to Sensitive Information Disclosure
https://notcve.org/view.php?id=CVE-2023-2639
The underlying feedback mechanism of Rockwell Automation's FactoryTalk System Services that transfers the FactoryTalk Policy Manager rules to relevant devices on the network does not verify that the origin of the communication is from a legitimate local client device. This may allow a threat actor to craft a malicious website that, when visited, will send a malicious script that can connect to the local WebSocket endpoint and wait for events as if it was a valid client device. If successfully exploited, this would allow a threat actor to receive information including whether FactoryTalk Policy Manager is installed and potentially the entire security policy. • https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1139683 • CWE-346: Origin Validation Error •
CVSS: 7.4EPSS: 0%CPEs: 2EXPL: 0CVE-2023-34114
https://notcve.org/view.php?id=CVE-2023-34114
Exposure of resource to wrong sphere in Zoom for Windows and Zoom for MacOS clients before 5.14.10 may allow an authenticated user to potentially enable information disclosure via network access. • https://explore.zoom.us/en/trust/security/security-bulletin • CWE-668: Exposure of Resource to Wrong Sphere •
CVSS: 7.5EPSS: 0%CPEs: 318EXPL: 0CVE-2023-1707
https://notcve.org/view.php?id=CVE-2023-1707
Certain HP Enterprise LaserJet and HP LaserJet Managed Printers are potentially vulnerable to information disclosure when IPsec is enabled with FutureSmart version 5.6. • https://support.hp.com/us-en/document/ish_7905330-7905358-16/hpsbpi03838 •