CVE-2024-39582
https://notcve.org/view.php?id=CVE-2024-39582
A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information disclosure. • https://www.dell.com/support/kbdoc/en-us/000228412/dsa-2024-360-security-update-for-dell-powerscale-insightiq-for-multiple-security-vulnerabilities • CWE-798: Use of Hard-coded Credentials •
CVE-2024-42425
https://notcve.org/view.php?id=CVE-2024-42425
A low privileged attacker with local access could potentially exploit this vulnerability, leading to Information disclosure. • https://www.dell.com/support/kbdoc/en-us/000227015/dsa-2024-328 • CWE-788: Access of Memory Location After End of Buffer •
CVE-2024-42424
https://notcve.org/view.php?id=CVE-2024-42424
A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information disclosure. • https://www.dell.com/support/kbdoc/en-us/000227014/dsa-2024-327 • CWE-20: Improper Input Validation •
CVE-2024-45283 – Information disclosure vulnerability in SAP NetWeaver AS for Java (Destination Service)
https://notcve.org/view.php?id=CVE-2024-45283
SAP NetWeaver AS for Java allows an authorized attacker to obtain sensitive information. ... After successful exploitation, an attacker can read the sensitive information but cannot modify or delete the data. • https://me.sap.com/notes/3477359 https://url.sap/sapsecuritypatchday • CWE-256: Plaintext Storage of a Password •
CVE-2024-44121 – Information Disclosure in SAP S/4 HANA (Statutory Reports)
https://notcve.org/view.php?id=CVE-2024-44121
Under certain conditions Statutory Reports in SAP S/4 HANA allows an attacker with basic privileges to access information which would otherwise be restricted. • https://me.sap.com/notes/3437585 https://url.sap/sapsecuritypatchday • CWE-213: Exposure of Sensitive Information Due to Incompatible Policies •