CVSS: 4.6EPSS: 0%CPEs: 20EXPL: 0CVE-2023-1526
https://notcve.org/view.php?id=CVE-2023-1526
Certain DesignJet and PageWide XL TAA compliant models may have risk of potential information disclosure if the hard disk drive is physically removed from the printer. • https://support.hp.com/us-en/document/ish_7869666-7869691-16/hpsbpi03837 •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-2360
https://notcve.org/view.php?id=CVE-2023-2360
Sensitive information disclosure due to CORS misconfiguration. • https://security-advisory.acronis.com/advisories/SEC-4215 • CWE-942: Permissive Cross-domain Policy with Untrusted Domains •
CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0CVE-2023-27557 – IBM Safter Payments information disclosure
https://notcve.org/view.php?id=CVE-2023-27557
IBM Counter Fraud Management for Safer Payments 6.1.0.00 through 6.1.1.02, 6.2.0.00 through 6.2.2.02, 6.3.0.00 through 6.3.1.02, 6.4.0.00 through 6.4.2.01, and 6.5.0.00 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 249192. • https://exchange.xforce.ibmcloud.com/vulnerabilities/249192 https://www.ibm.com/support/pages/node/6985603 • CWE-327: Use of a Broken or Risky Cryptographic Algorithm •
CVSS: 5.3EPSS: 0%CPEs: 2EXPL: 0CVE-2023-27860 – IBM Maximo Asset Management information disclosure
https://notcve.org/view.php?id=CVE-2023-27860
IBM Maximo Asset Management 7.6.1.2 and 7.6.1.3 could disclose sensitive information in an error message. This information could be used in further attacks against the system. IBM X-Force ID: 249207. • https://exchange.xforce.ibmcloud.com/vulnerabilities/249207 https://www.ibm.com/support/pages/node/6985679 • CWE-209: Generation of Error Message Containing Sensitive Information •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 2CVE-2023-26243
https://notcve.org/view.php?id=CVE-2023-26243
The decryption binary used to decrypt firmware files has an information leak that allows an attacker to read the AES key and initialization vector from memory. • https://sowhat.iit.cnr.it https://sowhat.iit.cnr.it:8443/can-work/chimaera https://sowhat.iit.cnr.it:8443/can-work/chimaera/-/blob/main/Report/IIT-01-2023.pdf • CWE-668: Exposure of Resource to Wrong Sphere •