CVE-2024-37966 – Microsoft SQL Server Native Scoring Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-37966
Microsoft SQL Server Native Scoring Information Disclosure Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-37966 • CWE-125: Out-of-bounds Read •
CVE-2024-42423
https://notcve.org/view.php?id=CVE-2024-42423
A local unauthenticated user with low privileges may potentially exploit this vulnerability to bypass existing controls and perform unauthorized actions leading to information disclosure and tampering. • https://www.dell.com/support/kbdoc/en-us/000225289/dsa-2024-229-security-update-for-dell-thinos-vulnerabilities • CWE-863: Incorrect Authorization •
CVE-2024-31490
https://notcve.org/view.php?id=CVE-2024-31490
An exposure of sensitive information to an unauthorized actor in Fortinet FortiSandbox version 4.4.0 through 4.4.4 and 4.2.0 through 4.2.6 and 4.0.0 through 4.0.5 and 3.2.2 through 3.2.4 and 3.1.5 allows attacker to information disclosure via HTTP get requests. • https://fortiguard.com/psirt/FG-IR-24-051 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVE-2024-27257 – IBM OpenPages information disclosure
https://notcve.org/view.php?id=CVE-2024-27257
IBM OpenPages 8.3 and 9.0 potentially exposes information about client-side source code through use of JavaScript source maps to unauthorized users. IBM OpenPages 8.3 y 9.0 potencialmente expone información sobre el código fuente del lado del cliente mediante el uso de mapas de origen de JavaScript a usuarios no autorizados. • https://exchange.xforce.ibmcloud.com/vulnerabilities/283966 https://www.ibm.com/support/pages/node/7167702 • CWE-540: Inclusion of Sensitive Information in Source Code •
CVE-2024-39582
https://notcve.org/view.php?id=CVE-2024-39582
A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information disclosure. • https://www.dell.com/support/kbdoc/en-us/000228412/dsa-2024-360-security-update-for-dell-powerscale-insightiq-for-multiple-security-vulnerabilities • CWE-798: Use of Hard-coded Credentials •