Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-532

CWE-532

Medium likelihood

Insertion of Sensitive Information into Log File

Parent: CWE-538 - Insertion of Sensitive Information into Externally-Accessible File or Directory

The product writes sensitive information to a log file.

1,137 vulnerabilities with CWE-532

CVE-2026-0267 MEDIUM

GlobalProtect App: Information Exposure Vulnerability on macOS

CVE-2026-9751 MEDIUM

Sensitive data could be written to mongod.log

CVE-2026-9735 MEDIUM

Keyfile contents are in MongoDB Server logs

CVE-2026-45581 MEDIUM

fabric-chaincode-java: TLS Private Key Password Disclosed in INFO Startup Logs in Chaincode-as-a-Service Mode

CVE-2026-50205 HIGH

Acer Connect M6E 5G Portable WiFi Router - Plaintext Log Credential Leakage

CVE-2026-45679 MEDIUM

OpenTelemetry eBPF Instrumentation: Redis error text is exported in span status messages

CVE-2026-40619 HIGH

Genetec Security Center - Insertion of Sensitive Information into Log File

CVE-2026-49200 CRITICAL

Acer Wave 7 router: Broken Access Control

CVE-2026-45040 MEDIUM

RustFS: Sensitive Information Leakage (SessionToken and SecretAccessKey) in RustFS Logs [Debug Mode]

CVE-2026-6720 HIGH

Calicoctl leaks cluster credentials to stderr when verbose logging is enabled

CVE-2026-41185 MEDIUM

ServiceAccount token disclosure via Azure IPAM CNI plugin logs

CVE-2026-41184 MEDIUM

Tigera Calico - ServiceAccount Token Disclosure via Install-Cni Container Logs

CVE-2026-32996 HIGH

Veeam Backup And Replication < 13.0.1 - Insertion of Sensitive Information into Log File

CVE-2026-5515 MEDIUM

IBM App Connect Enterprise is vulnerable to a confidential disclosure

CVE-2026-2607 MEDIUM

Multiple vulnerabilities in IBM MQ Operator and Queue manager container images

CVE-2026-25193 HIGH

Gallagher Command Centre Server - Insertion of Sensitive Information into Log File

CVE-2026-8671 HIGH

Log Files contain encrypted secrets

CVE-2026-44052 HIGH

Netatalk 2.1.0-4.4.2 - Sensitive Information Disclosure via LDAP Password Logging

CVE-2026-20239 HIGH

Sensitive Information Disclosure through Log Files in Splunk Enterprise

CVE-2026-44516 HIGH

Valtimo: Sensitive data exposure through HTTP request/response logging in LoggingRestClientCustomizer

CVE-2026-44479 MEDIUM

Vercel: Non-interactive mode includes CLI arguments in suggested command output

CVE-2026-41219 MEDIUM

F5 BIG-IP QKView - Sensitive Information Disclosure

CVE-2026-8200 LOW

Schema validation log messages may not redact user data

CVE-2026-43992 CRITICAL

JunoClaw: MCP write tools exposed raw BIP-39 mnemonic as a tool-call parameter

CVE-2026-28987 HIGH

iOS and iPadOS < 18.7.9 - Sensitive Kernel State Exposure via Log File

Page 1 of 46 Next

Details

Vulnerabilities 1,137

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy