Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-532

CWE-532

Medium likelihood

Insertion of Sensitive Information into Log File

Parent: CWE-538 - Insertion of Sensitive Information into Externally-Accessible File or Directory

The product writes sensitive information to a log file.

1,099 vulnerabilities with CWE-532

CVE-2026-41182 MEDIUM

LangSmith SDK: Streaming token events bypass output redaction

CVE-2026-40945 HIGH

Oxia: Bearer token exposed in debug log messages on authentication failure

CVE-2026-23775 HIGH

Dell PowerProtect Data Domain <8.6.0.0 - Info Disclosure

CVE-2026-34164 MEDIUM

Valtimo: Sensitive data exposure through inbox message logging in InboxHandlingService

CVE-2026-31987 HIGH

Apache Airflow: JWT token appearing in logs

CVE-2026-20205 HIGH

Sensitive Information Disclosure in ''_internal'' index in Splunk MCP Server app

CVE-2026-40091 MEDIUM

SpiceDB: SPICEDB_DATASTORE_CONN_URI is leaked on startup logs

CVE-2026-32218 MEDIUM

Windows Kernel Information Disclosure Vulnerability

CVE-2026-32217 MEDIUM

Windows Kernel Information Disclosure Vulnerability

CVE-2026-32215 MEDIUM

Windows Kernel Information Disclosure Vulnerability

CVE-2026-0207 HIGH

Sensitive Information Logging Vulnerability in FlashBlade

CVE-2026-2401 MEDIUM

Schneider Electric PowerChute Serial Shutdown <=1.4 - Info Disclosure

CVE-2026-34487 HIGH

Apache Tomcat: Cloud membership for clustering component exposed the Kubernetes bearer token

CVE-2026-4901 MEDIUM

Insertion of Sesitive Information into Log File in Hydrosystem Control System

CVE-2026-28261 HIGH

Dell Elastic Cloud Storage <=3.8.1.7 - Info Disclosure

CVE-2026-4788 HIGH

Multiple Vulnerabilities affect IBM Tivoli Netcool Impact

CVE-2026-27315 MEDIUM

Apache Cassandra: cqlsh history sensitive information leak

CVE-2026-35185 HIGH

HAX CMS's public /server-status endpoint exposes authentication tokens, user activity, and client IP addresses

CVE-2026-4819 MEDIUM

Search Guard audit logs can contain under certain conditions user credentials

CVE-2026-32982 HIGH

OpenClaw < 2026.3.13 - Telegram Bot Token Exposure in Media Fetch Error Logs

CVE-2026-5128 CRITICAL

ArthurFiorette steam-trader 2.1.1 - Info Disclosure

CVE-2026-4957 LOW

OpenBMB XAgent API Key function_handler.py FunctionHandler.handle_tool_call log file

CVE-2026-28868 MEDIUM

Apple Ios And Ipados < 18.7.7 - Denial of Service

CVE-2026-20668 MEDIUM

Apple Ios And Ipados < 18.7.7 - Denial of Service

CVE-2026-32598 MEDIUM

OneUptime <10.0.24 - Info Disclosure

Page 1 of 44 Next

Details

Vulnerabilities 1,099

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy