CVSS: 5.7EPSS: 0%CPEs: -EXPL: 0CVE-2024-21993 – Information Disclosure Vulnerability in SnapCenter
https://notcve.org/view.php?id=CVE-2024-21993
SnapCenter versions prior to 5.0p1 are susceptible to a vulnerability which could allow an authenticated attacker to discover plaintext credentials. Las versiones de SnapCenter anteriores a la 5.0p1 son susceptibles a una vulnerabilidad que podría permitir a un atacante autenticado descubrir credenciales en texto plano. • https://security.netapp.com/advisory/ntap-20240705-0007 •
CVSS: 6.2EPSS: 0%CPEs: 4EXPL: 0CVE-2024-34721
https://notcve.org/view.php?id=CVE-2024-34721
This could lead to local information disclosure with no additional execution privileges needed. • https://android.googlesource.com/platform/packages/providers/MediaProvider/+/7a1cbf5a8e17e6bff7c835fdd30dcc42b681db0a https://source.android.com/security/bulletin/2024-07-01 • CWE-922: Insecure Storage of Sensitive Information •
CVSS: 8.4EPSS: 0%CPEs: 4EXPL: 1CVE-2024-31319
https://notcve.org/view.php?id=CVE-2024-31319
In updateNotificationChannelFromPrivilegedListener of NotificationManagerService.java, there is a possible cross-user data leak due to a confused deputy. • https://github.com/23Nero/fix-02-failure-CVE-2024-31319-CVE-2024-0039 https://android.googlesource.com/platform/frameworks/base/+/3cc021bf608fa813a9a40932028fdde2b12a2d5e https://source.android.com/security/bulletin/2024-06-01 • CWE-441: Unintended Proxy or Intermediary ('Confused Deputy') •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2024-31312
https://notcve.org/view.php?id=CVE-2024-31312
In multiple locations, there is a possible information leak due to a missing permission check. This could lead to local information disclosure exposing played media with no additional execution privileges needed. • https://android.googlesource.com/platform/frameworks/base/+/748055291460bcaafa3e53c7da1601a687959477 https://source.android.com/security/bulletin/2024-06-01 • CWE-276: Incorrect Default Permissions •
CVSS: 5.5EPSS: 0%CPEs: 16EXPL: 0CVE-2024-38017 – Microsoft Message Queuing Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-38017
Microsoft Message Queuing Information Disclosure Vulnerability Vulnerabilidad de divulgación de información de Microsoft Message Queue Server • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38017 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •