CVSS: 7.8EPSS: 0%CPEs: 15EXPL: 0CVE-2024-38214 – Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-38214
13 Aug 2024 — Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38214 • CWE-125: Out-of-bounds Read •
CVSS: 5.5EPSS: 0%CPEs: 8EXPL: 0CVE-2024-38155 – Security Center Broker Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-38155
13 Aug 2024 — Security Center Broker Information Disclosure Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38155 • CWE-125: Out-of-bounds Read •
CVSS: 5.5EPSS: 0%CPEs: 25EXPL: 0CVE-2024-38151 – Windows Kernel Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-38151
13 Aug 2024 — Windows Kernel Information Disclosure Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38151 • CWE-125: Out-of-bounds Read •
CVSS: 5.5EPSS: 0%CPEs: 25EXPL: 0CVE-2024-38122 – Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-38122
13 Aug 2024 — Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38122 • CWE-908: Use of Uninitialized Resource •
CVSS: 5.5EPSS: 0%CPEs: 25EXPL: 0CVE-2024-38118 – Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-38118
13 Aug 2024 — Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38118 • CWE-908: Use of Uninitialized Resource •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2024-38167 – .NET and Visual Studio Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-38167
13 Aug 2024 — .NET and Visual Studio Information Disclosure Vulnerability A flaw was found in the .NET platform. This issue may lead to the disclosure of sensitive information via TlsStream. It was discovered that .NET suffered from an information disclosure vulnerability. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38167 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-319: Cleartext Transmission of Sensitive Information •
CVSS: 4.4EPSS: 0%CPEs: 1EXPL: 0CVE-2024-38123 – Windows Bluetooth Driver Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-38123
13 Aug 2024 — Windows Bluetooth Driver Information Disclosure Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38123 • CWE-125: Out-of-bounds Read •
CVSS: 5.0EPSS: 0%CPEs: -EXPL: 0CVE-2023-31339
https://notcve.org/view.php?id=CVE-2023-31339
13 Aug 2024 — Improper input validation in ARM® Trusted Firmware used in AMD’s Zynq™ UltraScale+™) MPSoC/RFSoC may allow a privileged attacker to perform out of bound reads, potentially resulting in data leakage and denial of service. • https://www.amd.com/en/resources/product-security/bulletin/amd-sb-8002 • CWE-20: Improper Input Validation •
CVSS: 5.0EPSS: 0%CPEs: -EXPL: 0CVE-2023-31305
https://notcve.org/view.php?id=CVE-2023-31305
13 Aug 2024 — Generation of weak and predictable Initialization Vector (IV) in PMFW (Power Management Firmware) may allow an attacker with privileges to reuse IV values to reverse-engineer debug data, potentially resulting in information disclosure. • https://www.amd.com/en/resources/product-security/bulletin/amd-sb-6005.html • CWE-338: Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-40697 – IBM Common Licensing information disclosure
https://notcve.org/view.php?id=CVE-2024-40697
13 Aug 2024 — IBM Common Licensing 9.0 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. IBM X-Force ID: 297895. • https://exchange.xforce.ibmcloud.com/vulnerabilities/297895 • CWE-521: Weak Password Requirements •