
CVE-2020-3122 – Cisco Content Security Management Appliance Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2020-3122
04 Mar 2025 — A vulnerability in the web-based management interface of Cisco AsyncOS for Cisco Content Security Management Appliance (SMA) could allow an unauthenticated, remote attacker to obtain sensitive network information. • https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvr92383 • CWE-284: Improper Access Control •

CVE-2019-1815 – Cisco Meraki MX67 and MX68 Sensitive Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2019-1815
04 Mar 2025 — A security vulnerability was discovered in the local status page functionality of Cisco Meraki’s MX67 and MX68 security appliance models that may allow unauthenticated individuals to access and download logs containing sensitive, privileged device information. The vulnerability is due to improper access control to the files holding debugging and maintenance information, and is only exploitable when the local status page is enabled on the device. An attacker exploiting this vulnerability may obtain access to... • https://documentation.meraki.com/General_Administration/Privacy_and_Security/Cisco_Meraki_MX67_and_MX68_Sensitive_Information_Disclosure_Vulnerability • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •

CVE-2025-22226 – VMware ESXi, Workstation, and Fusion Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2025-22226
04 Mar 2025 — VMware ESXi, Workstation, and Fusion contain an information disclosure vulnerability due to an out-of-bounds read in HGFS. ... VMware ESXi, Workstation, and Fusion contain an information disclosure vulnerability due to an out-of-bounds read in HGFS. ... VMware ESXi, Workstation, and Fusion contain an information disclosure vulnerability due to an out-of-bounds read in HGFS. • https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25390 • CWE-125: Out-of-bounds Read •

CVE-2025-21098 – Liteos-A has an insecure storage of sensitive information vulnerability
https://notcve.org/view.php?id=CVE-2025-21098
04 Mar 2025 — in OpenHarmony v5.0.2 and prior versions allow a local attacker cause information leak through out-of-bounds read bypass permission check. in OpenHarmony v5.0.2 and prior versions allow a local attacker cause information leak through out-of-bounds read bypass permission check. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2025/2025-03.md • CWE-922: Insecure Storage of Sensitive Information •

CVE-2025-20042 – Liteos-A has an out of bounds read vulnerability
https://notcve.org/view.php?id=CVE-2025-20042
04 Mar 2025 — in OpenHarmony v5.0.2 and prior versions allow a local attacker cause information leak through out-of-bounds read. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2025/2025-03.md • CWE-125: Out-of-bounds Read •

CVE-2025-25301 – Rembg allows SSRF via /api/remove
https://notcve.org/view.php?id=CVE-2025-25301
03 Mar 2025 — This issue may lead to Information Disclosure. • https://securitylab.github.com/advisories/GHSL-2024-161_GHSL-2024-162_rembg • CWE-918: Server-Side Request Forgery (SSRF) •

CVE-2024-41771 – IBM Engineering Requirements Management DOORS Next information disclosure
https://notcve.org/view.php?id=CVE-2024-41771
03 Mar 2025 — IBM Engineering Requirements Management DOORS Next 7.0.2, 7.0.3, and 7.1 could allow a remote attacker to download temporary files which could expose application logic or other sensitive information. • https://www.ibm.com/support/pages/node/7184663 • CWE-522: Insufficiently Protected Credentials •

CVE-2024-41770 – IBM Engineering Requirements Management DOORS Next information disclosure
https://notcve.org/view.php?id=CVE-2024-41770
03 Mar 2025 — IBM Engineering Requirements Management DOORS Next 7.0.2, 7.0.3, and 7.1 could allow a remote attacker to download temporary files which could expose application logic or other sensitive information. • https://www.ibm.com/support/pages/node/7184663 • CWE-522: Insufficiently Protected Credentials •

CVE-2024-53011 – Permissions, Privileges, and Access Controls in Video Analytics and Processing
https://notcve.org/view.php?id=CVE-2024-53011
03 Mar 2025 — Information disclosure may occur due to improper permission and access controls to Video Analytics engine. • https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2025-bulletin.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-264: Permissions, Privileges, and Access Controls •

CVE-2024-43051 – Improper Authorization in SPS-HLOS
https://notcve.org/view.php?id=CVE-2024-43051
03 Mar 2025 — Information disclosure while deriving keys for a session for any Widevine use case. • https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2025-bulletin.html • CWE-285: Improper Authorization •