Vulnerabilities (CVE)

CWE filter

CWE-534

Filter

5 total CVE
CVE Vendors Products Updated CVSS
CVE-2019-4296 2019-07-03 2.1
IBM Robotic Process Automation with Automation Anywhere 11 information disclosure could allow a local user to obtain e-mail contents from the client debug log file. IBM X-Force ID: 160759.
CVE-2018-16095 2018-12-19 4.3
In System Management Module (SMM) versions prior to 1.06, the SMM records hashed passwords to a debug log when user authentication fails.
CVE-2018-7754 1 Linux 1 Linux Kernel 2018-10-10 2.1
The aoedisk_debugfs_show function in drivers/block/aoe/aoeblk.c in the Linux kernel through 4.16.4rc4 allows local users to obtain sensitive address information by reading "ffree: " lines in a debugfs file.
CVE-2017-11398 1 Trendmicro 1 Smart Protection Server 2018-02-05 6.8
A session hijacking via log disclosure vulnerability in Trend Micro Smart Protection Server (Standalone) versions 3.2 and below could allow an unauthenticated attacker to hijack active user sessions to perform authenticated requests on a...
CVE-2015-6941 1 Saltstack 1 Salt 2015 2017-08-21 5.0
win_useradd, salt-cloud and the Linode driver in salt 2015.5.x before 2015.5.6, and 2015.8.x before 2015.8.1 leak password information in debug logs.