Fallos del tipo CWE-532

746 resultados
CVE-2021-37861MEDIUMMattermost 6.0.2 and earlier fails to sufficiently sanitize user's password in audit logs when user creation fails.EPSS 0.9%CVE-2018-16856MEDIUMIn a default Red Hat Openstack Platform Director installation, openstack-octavia before versions openstack-octavia 2.0.2-5 and openstack-octEPSS 0.9%CVE-2026-25846MEDIUMIn JetBrains YouTrack before 2025.3.119033 access tokens could be exposed in Mailbox logsEPSS 0.9%CVE-2017-7434LOWNetIQ Identity Manager JDBC driver could leak passwords in exception tracesEPSS 0.9%CVE-2024-31391MEDIUMApache Solr Operator: Solr-Operator liveness and readiness probes may leak basic auth credentialsEPSS 0.8%CVE-2022-38756MEDIUMCVE-2022-38756 vulnerability in GW Web prior to 18.4.2EPSS 0.8%CVE-2023-25163MEDIUMArgo CD leaks repository credentials in user-facing error messages and in logsEPSS 0.8%CVE-2025-21323MEDIUMWindows Kernel Memory Information Disclosure VulnerabilityEPSS 0.8%CVE-2025-21317MEDIUMWindows Kernel Memory Information Disclosure VulnerabilityEPSS 0.8%CVE-2021-32767MEDIUMInformation Disclosure in User AuthenticationEPSS 0.8%CVE-2022-20768MEDIUMCisco TelePresence Collaboration Endpoint and RoomOS Software Information Disclosure VulnerabilityEPSS 0.8%CVE-2025-46432MEDIUMIn JetBrains TeamCity before 2025.03.1 base64-encoded credentials could be exposed in build logsEPSS 0.8%CVE-2026-54236MEDIUMvLLM: incomplete CVE-2026-22778 fix leaks PIL repr addresses via Anthropic routerEPSS 0.8%CVE-2023-24827MEDIUMCredential disclosure in syft when SYFT_ATTEST_PASSWORD environment variable set in syftEPSS 0.8%CVE-2023-22362HIGHSUSHIRO App for Android outputs sensitive information to the log file, which may result in an attacker obtaining a credential information frEPSS 0.8%CVE-2022-32254MEDIUMA vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.1). A customized HTTP POST request could force the apEPSS 0.8%CVE-2018-19014Drager Infinity Delta, Infinity Delta, all versions, Delta XL, all versions, Kappa, all version, and Infinity Explorer C700, all versions. LEPSS 0.8%CVE-2022-3499MEDIUMAn authenticated attacker could utilize the identical agent and cluster node linking keys to potentially allow for a scenario where unauthorEPSS 0.8%CVE-2021-37709MEDIUMInsecure direct object reference of log files of the Import/Export featureEPSS 0.8%CVE-2022-43936MEDIUMBrocade Fabric OS switch passwords when debugging is enabledEPSS 0.8%