Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-532

CWE-532

Medium likelihood

Insertion of Sensitive Information into Log File

Parent: CWE-538 - Insertion of Sensitive Information into Externally-Accessible File or Directory

The product writes sensitive information to a log file.

1,137 vulnerabilities with CWE-532

CVE-2024-10544 MEDIUM

Woo Manage Fraud Orders <6.1.7 - Info Disclosure

CVE-2024-44239 MEDIUM

iPadOS < 17.7.1 - Sensitive Kernel State Exposure via Log File

CVE-2024-27849 LOW

macOS Sequoia <15 - Info Disclosure

CVE-2024-49750 MEDIUM

Snowflake Connector for Python <3.12.3 - Info Disclosure

CVE-2024-44205 MEDIUM

iPadOS < 16.7.9 - Sensitive Information Exposure in System Logs

CVE-2024-45739 MEDIUM

Splunk < 9.3.1, < 9.2.3, < 9.1.6 - Plaintext Password Exposure in AdminManager Debug Log

CVE-2024-45738 MEDIUM

Splunk 9.1.0-9.1.5 - Sensitive Information Exposure via REST_Calls Log Channel

CVE-2024-38862 MEDIUM

Checkmk <2.3.0p18, <2.2.0p35, <2.1.0p48, <=2.0.0p39 - Sensitive Information Disclosure in Audit Log

CVE-2024-8264 MEDIUM

Fortra's Robot Schedule Enterprise Agent <3.05 - Info Disclosure

CVE-2024-9466 MEDIUM

Palo Alto Networks Expedition 1.2.0-1.2.95 - Authenticated Sensitive Information Disclosure in Log Files

CVE-2024-47822 MEDIUM

Directus < 10.13.2 - Sensitive Information Exposure in Log Files via Query String Access Token

CVE-2024-9621 MEDIUM

Quarkus CXF - Sensitive Information Disclosure in Log Files

CVE-2024-47913 MEDIUM

MediaWiki AbuseFilter <1.39.9, 1.40.x-1.41.x<1.41.3, 1.42.x<1.42.2 - API Unauthorized Log Disclosure

CVE-2024-20491 MEDIUM

Cisco Nexus Dashboard Insights - Info Disclosure

CVE-2024-20490 MEDIUM

Cisco Nexus Dashboard - Info Disclosure

CVE-2024-8609 HIGH

Oceanic Software ValeApp <2.0.0 - Info Disclosure

CVE-2024-47083 HIGH

Power Platform Terraform Provider <3.0.0 - Info Disclosure

CVE-2024-7421 MEDIUM

Devolutions Remote Desktop Manager < 2024.3.10 - Local Credential Exposure via WinSCP Command-Line Arguments

CVE-2024-43990 MEDIUM

StylemixThemes Masterstudy LMS Starter - Info Disclosure

CVE-2024-44166 MEDIUM

macOS < 13.7, < 14.7, < 15 - Unprotected User Data Exposure via Log File Insertion

CVE-2024-40791 LOW

macOS Ventura <13.7 - Info Disclosure

CVE-2024-8775 MEDIUM

ansible-core >=2.17.0b1 <2.17.6 - Sensitive Information Exposure in Log Files via Vault Variable Handling

CVE-2024-4472 MEDIUM

GitLab CE/EE <17.1.7-17.2.5-17.3.2 - Info Disclosure

CVE-2024-43781 MEDIUM

SINUMERIK 828D/840D sl V4 < V4.95 SP3, ONE < V6.23/6.15 SP4 - Authenticated Sensitive Information Disclosure

CVE-2024-42344 MEDIUM

SINEMA Remote Connect Client < 3.2 SP2 - Sensitive Information Disclosure in Log File

Previous Page 13 of 46 Next

Details

Vulnerabilities 1,137

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy