CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-39826 – Zoom Workplace Apps and SDKs - Path traversal
https://notcve.org/view.php?id=CVE-2024-39826
Path traversal in Team Chat for some Zoom Workplace Apps and SDKs for Windows may allow an authenticated user to conduct information disclosure via network access. • https://www.zoom.com/en/trust/security-bulletin/zsb-24023 • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •
CVSS: 5.3EPSS: 0%CPEs: 2EXPL: 0CVE-2024-6398
https://notcve.org/view.php?id=CVE-2024-6398
An information disclosure vulnerability in SWG in versions 12.x prior to 12.2.10 and 11.x prior to 11.2.24 allows information stored in a customizable block page to be disclosed to third-party websites due to Same Origin Policy Bypass of browsers in certain scenarios. • https://thrive.trellix.com/s/article/000013694 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 4.3EPSS: 0%CPEs: -EXPL: 0CVE-2024-39740 – IBM Datacap Navigator information disclosure
https://notcve.org/view.php?id=CVE-2024-39740
IBM Datacap Navigator 9.1.5, 9.1.6, 9.1.7, 9.1.8, and 9.1.9 displays version information in HTTP requests that could allow an attacker to gather information for future attacks against the system. IBM X-Force ID: 296009. IBM Datacap Navigator 9.1.5, 9.1.6, 9.1.7, 9.1.8 y 9.1.9 muestra información de versión en solicitudes HTTP que podrían permitir a un atacante recopilar información para futuros ataques contra el sistema. ID de IBM X-Force: 296009. • https://exchange.xforce.ibmcloud.com/vulnerabilities/296009 https://www.ibm.com/support/pages/node/7160185 • CWE-497: Exposure of Sensitive System Information to an Unauthorized Control Sphere •
CVSS: 4.3EPSS: 0%CPEs: -EXPL: 0CVE-2024-39729 – IBM Datacap Navigator information disclosure
https://notcve.org/view.php?id=CVE-2024-39729
IBM Datacap Navigator 9.1.5, 9.1.6, 9.1.7, 9.1.8, and 9.1.9 could allow an authenticated user to obtain sensitive information from source code that could be used in further attacks against the system. IBM X-Force ID: 295968. IBM Datacap Navigator 9.1.5, 9.1.6, 9.1.7, 9.1.8 y 9.1.9 podría permitir a un usuario autenticado obtener información confidencial del código fuente que podría usarse en futuros ataques contra el sistema. ID de IBM X-Force: 295968. • https://exchange.xforce.ibmcloud.com/vulnerabilities/295968 https://www.ibm.com/support/pages/node/7160185 • CWE-540: Inclusion of Sensitive Information in Source Code •
CVSS: 5.9EPSS: 0%CPEs: -EXPL: 0CVE-2024-39731 – IBM Datacap Navigator information disclosure
https://notcve.org/view.php?id=CVE-2024-39731
IBM Datacap Navigator 9.1.5, 9.1.6, 9.1.7, 9.1.8, and 9.1.9 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 295970. IBM Datacap Navigator 9.1.5, 9.1.6, 9.1.7, 9.1.8 y 9.1.9 utiliza algoritmos criptográficos más débiles de lo esperado que podrían permitir a un atacante descifrar información altamente confidencial. ID de IBM X-Force: 295970. • https://exchange.xforce.ibmcloud.com/vulnerabilities/295970 https://www.ibm.com/support/pages/node/7160185 • CWE-327: Use of a Broken or Risky Cryptographic Algorithm •