Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-532

CWE-532

Medium likelihood

Insertion of Sensitive Information into Log File

Parent: CWE-538 - Insertion of Sensitive Information into Externally-Accessible File or Directory

The product writes sensitive information to a log file.

1,137 vulnerabilities with CWE-532

CVE-2024-20440 HIGH

Cisco Smart Licensing Utility - Info Disclosure

CVE-2024-8365 MEDIUM

HashiCorp Vault < 1.16.9, < 1.17.5 - Sensitive Information Disclosure in Audit Logs

CVE-2024-43444 HIGH

OTRS <7.0.50,8.0.X,2023.X,2024.5.X - Info Disclosure

CVE-2024-42056 MEDIUM

Retool 3.18.1-3.40.0 - Authenticated Credential Exposure via Resources Endpoint

CVE-2024-6451 HIGH

AI Engine < 2.4.3 - Authenticated Remote Code Execution via Log Poisoning

CVE-2024-41719 MEDIUM

BIG-IP Next Central Manager 20.1.0-20.2.0 - Sensitive Information Disclosure in QKView Logs

CVE-2024-41978 MEDIUM

Siemens SCALANCE and RUGGEDCOM Firmware < 8.1 - Authenticated Sensitive Information Exposure in Log Files

CVE-2024-37930 MEDIUM

ThemeSphere SmartMag < 10.1.0 - Sensitive Data Exposure via Log File Insertion

CVE-2024-37283 MEDIUM

Elastic Agent 8.6.0-8.14.2 - Sensitive Information Disclosure in Debug Logs

CVE-2024-40096 LOW

com.cascadialabs.who 15.0 - Info Disclosure

CVE-2024-37286 MEDIUM

APM Server < 8.14.0 - Sensitive Information Disclosure in Error Logs

CVE-2024-38321 MEDIUM

IBM Business Automation Workflow <24.0.0 - Info Disclosure

CVE-2024-42349 MEDIUM

Fogproject < 1.5.10.47 - Log Information Exposure

CVE-2024-6687 MEDIUM

CTT Expresso para WooCommerce <3.2.12 - Info Disclosure

CVE-2024-6977 MEDIUM

Cato Networks SDP Client < 5.10.34 - Sensitive Information Insertion into Log File

CVE-2024-41178 HIGH

Apache Arrow Rust Object Store < 0.10.1 - Sensitive Information Exposure in Logs via AWS WebIdentityToken

CVE-2024-41824 MEDIUM

JetBrains TeamCity < 2024.07 - Sensitive Information Disclosure in Build Log

CVE-2024-41129 MEDIUM

ops 2.0.0-2.14.9 - Sensitive Information Disclosure in Log Files via CLI Arguments

CVE-2024-0006 MEDIUM

Yugabyte Platform - Info Disclosure

CVE-2024-40636 MEDIUM

Steeltoe.Discovery.Eureka < 3.2.8 - Sensitive Information Exposure in Log Files via Eureka Server Service URLs

CVE-2024-39532 MEDIUM

Junos OS/Junos OS Evolved Sensitive Information Disclosure via Log File

CVE-2024-37270 MEDIUM

TrustedLogin <1.1.1 - Info Disclosure

CVE-2024-37205 MEDIUM

SERVIT Software Solutions - Info Disclosure

CVE-2024-27784 HIGH

Fortinet FortiAIOps <2.0.0 - Info Disclosure

CVE-2024-40598 MEDIUM

MediaWiki <1.42.1 - Info Disclosure

Previous Page 14 of 46 Next

Details

Vulnerabilities 1,137

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy