CVE-2024-37068 – IBM Maximo Application Suite information disclosure
https://notcve.org/view.php?id=CVE-2024-37068
IBM Maximo Application Suite - Manage Component 8.10, 8.11, and 9.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM Maximo Application Suite - Manage Component 8.10, 8.11, and 9.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information using man in the middle techniques. • https://exchange.xforce.ibmcloud.com/vulnerabilities/292799 https://www.ibm.com/support/pages/node/7167725 • CWE-327: Use of a Broken or Risky Cryptographic Algorithm •
CVE-2024-1744 – Information Disclosure in Ariva Computer's Accord ORS
https://notcve.org/view.php?id=CVE-2024-1744
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Ariva Computer Accord ORS allows Retrieve Embedded Sensitive Data.This issue affects Accord ORS: before 7.3.2.1. • https://www.usom.gov.tr/bildirim/tr-24-1408 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVE-2024-39585
https://notcve.org/view.php?id=CVE-2024-39585
A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Client-side request forgery and Information disclosure. • https://www.dell.com/support/kbdoc/en-us/000228357/dsa-2024-377-security-update-for-dell-networking-os10-vulnerability https://www.dell.com/support/kbdoc/en-us/000228355/dsa-2024-376-security-update-for-dell-networking-os10-vulnerability • CWE-259: Use of Hard-coded Password •
CVE-2024-44408
https://notcve.org/view.php?id=CVE-2024-44408
D-Link DIR-823G v1.0.2B05_20181207 is vulnerable to Information Disclosure. • https://github.com/lonelylonglong/openfile-/blob/main/DIR-823G.md/DIR-823G.md https://github.com/lonelylonglong/openfile-/blob/main/DIR-823G.md/CVE-2024-44408 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVE-2024-45096 – IBM Aspera Faspex information disclosure
https://notcve.org/view.php?id=CVE-2024-45096
IBM Aspera Faspex 5.0.0 through 5.0.9 could allow a user with access to the package to obtain sensitive information through a directory listing. • https://www.ibm.com/support/pages/node/7167255 • CWE-548: Exposure of Information Through Directory Listing •