Falhas do tipo CWE-532
741 resultadosCVE-2023-43261HIGHAn information disclosure in Milesight UR5X, UR32L, UR32, UR35, UR41 before v35.3.0.7 allows attackers to access sensitive router componentsEPSS 60.1%CVE-2024-20440HIGHA vulnerability in Cisco Smart Licensing Utility could allow an unauthenticated, remote attacker to access sensitive information.
This vuEPSS 51.5%CVE-2024-9466HIGHExpedition: Cleartext Storage of Information Leads to Firewall Admin Credential DisclosureEPSS 11.2%CVE-2025-9985MEDIUMFeatured Image from URL (FIFU) <= 5.2.7 - Unauthenticated Information Exposure via Log FileEPSS 11.1%CVE-2012-0814MEDIUMThe auth_parse_options function in auth-options.c in sshd in OpenSSH before 5.7 provides debug messages containing authorized_keys command oEPSS 3.7%CVE-2017-7550—A flaw was found in the way Ansible (2.3.x before 2.3.3, and 2.4.x before 2.4.1) passed certain parameters to the jenkins_plugin module. RemEPSS 3.5%CVE-2019-3888MEDIUMA vulnerability was found in Undertow web server before 2.0.21. An information exposure of plain text credentials through log files because EPSS 3.4%CVE-2026-22778CRITICALvLLM leaks a heap address when PIL throws an errorEPSS 3.3%CVE-2018-10855MEDIUMAnsible 2.5 prior to 2.5.5, and 2.4 prior to 2.4.5, do not honor the no_log task flag for failed tasks. When the no_log flag has been used tEPSS 3.1%CVE-2021-34797—Apache Geode project log file redaction of sensitive information vulnerabilityEPSS 2.9%CVE-2023-21492MEDIUMKernel pointers are printed in the log file prior to SMR May-2023 Release 1 allows a privileged local attacker to bypass ASLR.EPSS 2.6%KEVCVE-2024-48852MEDIUMInformation disclosuresEPSS 2.4%CVE-2021-32724CRITICALcheck-spelling workflow vulnerable to GITHUB_TOKEN leakage via symlink attackEPSS 2.3%CVE-2013-4733HIGHThe web server on the Digital Alert Systems DASDEC EAS device before 2.0-2 and the Monroe Electronics R189 One-Net EAS device before 2.0-2 aEPSS 2.2%CVE-2018-10889MEDIUMA flaw was found in moodle before versions 3.5.1, 3.4.4, 3.3.7. No option existed to omit logs from data privacy exports, which may contain EPSS 2.1%CVE-2025-14437HIGHHummingbird <= 3.18.0 - Unauthenticated Sensitive Information Exposure via Log FileEPSS 2.0%CVE-2025-68675HIGHApache Airflow: proxy credentials for various providers might leak in task logsEPSS 2.0%CVE-2019-10212MEDIUMA flaw was found in, all under 2.0.20, in the Undertow DEBUG log for io.undertow.request.security. If enabled, an attacker could abuse this EPSS 1.9%CVE-2019-1961MEDIUMCisco Enterprise NFV Infrastructure Software Web Portal Arbitrary File Read VulnerabilityEPSS 1.9%CVE-2023-22649HIGHRancher 'Audit Log' leaks sensitive informationEPSS 1.9%