CVSS: 7.1EPSS: 0%CPEs: 6EXPL: 0CVE-2024-37337 – Microsoft SQL Server Native Scoring Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-37337
10 Sep 2024 — Microsoft SQL Server Native Scoring Information Disclosure Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-37337 • CWE-197: Numeric Truncation Error •
CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 0CVE-2024-37966 – Microsoft SQL Server Native Scoring Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-37966
10 Sep 2024 — Microsoft SQL Server Native Scoring Information Disclosure Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-37966 • CWE-125: Out-of-bounds Read •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0CVE-2024-42423
https://notcve.org/view.php?id=CVE-2024-42423
10 Sep 2024 — A local unauthenticated user with low privileges may potentially exploit this vulnerability to bypass existing controls and perform unauthorized actions leading to information disclosure and tampering. • https://www.dell.com/support/kbdoc/en-us/000225289/dsa-2024-229-security-update-for-dell-thinos-vulnerabilities • CWE-863: Incorrect Authorization •
CVSS: 6.8EPSS: 0%CPEs: 5EXPL: 0CVE-2024-31490
https://notcve.org/view.php?id=CVE-2024-31490
10 Sep 2024 — An exposure of sensitive information to an unauthorized actor in Fortinet FortiSandbox version 4.4.0 through 4.4.4 and 4.2.0 through 4.2.6 and 4.0.0 through 4.0.5 and 3.2.2 through 3.2.4 and 3.1.5 allows attacker to information disclosure via HTTP get requests. • https://fortiguard.com/psirt/FG-IR-24-051 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 4.3EPSS: 0%CPEs: 2EXPL: 0CVE-2024-27257 – IBM OpenPages information disclosure
https://notcve.org/view.php?id=CVE-2024-27257
10 Sep 2024 — IBM OpenPages 8.3 and 9.0 potentially exposes information about client-side source code through use of JavaScript source maps to unauthorized users. IBM OpenPages 8.3 y 9.0 potencialmente expone información sobre el código fuente del lado del cliente mediante el uso de mapas de origen de JavaScript a usuarios no autorizados. • https://exchange.xforce.ibmcloud.com/vulnerabilities/283966 • CWE-540: Inclusion of Sensitive Information in Source Code •
CVSS: 4.4EPSS: 0%CPEs: 1EXPL: 0CVE-2024-39582
https://notcve.org/view.php?id=CVE-2024-39582
10 Sep 2024 — A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information disclosure. • https://www.dell.com/support/kbdoc/en-us/000228412/dsa-2024-360-security-update-for-dell-powerscale-insightiq-for-multiple-security-vulnerabilities • CWE-798: Use of Hard-coded Credentials •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-42425
https://notcve.org/view.php?id=CVE-2024-42425
10 Sep 2024 — A low privileged attacker with local access could potentially exploit this vulnerability, leading to Information disclosure. • https://www.dell.com/support/kbdoc/en-us/000227015/dsa-2024-328 • CWE-788: Access of Memory Location After End of Buffer •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-42424
https://notcve.org/view.php?id=CVE-2024-42424
10 Sep 2024 — A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information disclosure. • https://www.dell.com/support/kbdoc/en-us/000227014/dsa-2024-327 • CWE-20: Improper Input Validation •
CVSS: 6.0EPSS: 0%CPEs: 1EXPL: 0CVE-2024-45283 – Information disclosure vulnerability in SAP NetWeaver AS for Java (Destination Service)
https://notcve.org/view.php?id=CVE-2024-45283
10 Sep 2024 — After successful exploitation, an attacker can read the sensitive information but cannot modify or delete the data. • https://me.sap.com/notes/3477359 • CWE-256: Plaintext Storage of a Password •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-44121 – Information Disclosure in SAP S/4 HANA (Statutory Reports)
https://notcve.org/view.php?id=CVE-2024-44121
10 Sep 2024 — The vulnerability could expose internal user data that should remain confidential. • https://me.sap.com/notes/3437585 • CWE-213: Exposure of Sensitive Information Due to Incompatible Policies •