CVSS: 5.5EPSS: 0%CPEs: 18EXPL: 0CVE-2024-38256 – Windows Kernel-Mode Driver Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-38256
10 Sep 2024 — Windows Kernel-Mode Driver Information Disclosure Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38256 • CWE-908: Use of Uninitialized Resource •
CVSS: 6.2EPSS: 0%CPEs: 16EXPL: 0CVE-2024-38254 – Windows Authentication Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-38254
10 Sep 2024 — Windows Authentication Information Disclosure Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38254 • CWE-908: Use of Uninitialized Resource •
CVSS: 7.1EPSS: 0%CPEs: 6EXPL: 0CVE-2024-37342 – Microsoft SQL Server Native Scoring Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-37342
10 Sep 2024 — Microsoft SQL Server Native Scoring Information Disclosure Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-37342 • CWE-125: Out-of-bounds Read •
CVSS: 7.1EPSS: 0%CPEs: 6EXPL: 0CVE-2024-37337 – Microsoft SQL Server Native Scoring Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-37337
10 Sep 2024 — Microsoft SQL Server Native Scoring Information Disclosure Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-37337 • CWE-197: Numeric Truncation Error •
CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 0CVE-2024-37966 – Microsoft SQL Server Native Scoring Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-37966
10 Sep 2024 — Microsoft SQL Server Native Scoring Information Disclosure Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-37966 • CWE-125: Out-of-bounds Read •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0CVE-2024-42423
https://notcve.org/view.php?id=CVE-2024-42423
10 Sep 2024 — A local unauthenticated user with low privileges may potentially exploit this vulnerability to bypass existing controls and perform unauthorized actions leading to information disclosure and tampering. • https://www.dell.com/support/kbdoc/en-us/000225289/dsa-2024-229-security-update-for-dell-thinos-vulnerabilities • CWE-863: Incorrect Authorization •
CVSS: 6.8EPSS: 0%CPEs: 5EXPL: 0CVE-2024-31490
https://notcve.org/view.php?id=CVE-2024-31490
10 Sep 2024 — An exposure of sensitive information to an unauthorized actor in Fortinet FortiSandbox version 4.4.0 through 4.4.4 and 4.2.0 through 4.2.6 and 4.0.0 through 4.0.5 and 3.2.2 through 3.2.4 and 3.1.5 allows attacker to information disclosure via HTTP get requests. • https://fortiguard.com/psirt/FG-IR-24-051 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 4.3EPSS: 0%CPEs: 2EXPL: 0CVE-2024-27257 – IBM OpenPages information disclosure
https://notcve.org/view.php?id=CVE-2024-27257
10 Sep 2024 — IBM OpenPages 8.3 and 9.0 potentially exposes information about client-side source code through use of JavaScript source maps to unauthorized users. • https://exchange.xforce.ibmcloud.com/vulnerabilities/283966 • CWE-540: Inclusion of Sensitive Information in Source Code •
CVSS: 4.4EPSS: 0%CPEs: 1EXPL: 0CVE-2024-39582
https://notcve.org/view.php?id=CVE-2024-39582
10 Sep 2024 — A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information disclosure. • https://www.dell.com/support/kbdoc/en-us/000228412/dsa-2024-360-security-update-for-dell-powerscale-insightiq-for-multiple-security-vulnerabilities • CWE-798: Use of Hard-coded Credentials •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-42425
https://notcve.org/view.php?id=CVE-2024-42425
10 Sep 2024 — A low privileged attacker with local access could potentially exploit this vulnerability, leading to Information disclosure. • https://www.dell.com/support/kbdoc/en-us/000227015/dsa-2024-328 • CWE-788: Access of Memory Location After End of Buffer •