Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-532

CWE-532

Medium likelihood

Insertion of Sensitive Information into Log File

Parent: CWE-538 - Insertion of Sensitive Information into Externally-Accessible File or Directory

The product writes sensitive information to a log file.

1,137 vulnerabilities with CWE-532

CVE-2026-28943 HIGH

iOS and iPadOS < 18.7.9 - Sensitive Information Exposure via Log File Insertion

CVE-2026-28923 HIGH

macOS < 14.8.7, < 15.7.7, < 26.5 - Sensitive Information Exposure via Log File Insertion

CVE-2026-43826 MEDIUM

Apache Airflow Providers OpenSearch: OpenSearch task-log handler leaks credentials embedded in the host URL

CVE-2026-41018 MEDIUM

Apache Airflow Providers Elasticsearch: Elasticsearch task-log handler leaks credentials embedded in the host URL

CVE-2026-42282 MEDIUM

n8n-MCP: Sensitive MCP tool-call arguments logged on authenticated requests in HTTP mode

CVE-2026-41495 MEDIUM

n8n-MCP Logs Sensitive Request Data on Unauthorized /mcp Requests

CVE-2026-41004 MEDIUM

Spring Cloud Config Sensitive Information Exposure in Trace Logs

CVE-2026-7824 MEDIUM

PaperCut Hive (Ricoh): Plain text password in logs

CVE-2026-41182 MEDIUM

LangSmith SDK: Streaming token events bypass output redaction

CVE-2026-40945 HIGH

Oxia: Bearer token exposed in debug log messages on authentication failure

CVE-2026-23775 HIGH

Dell PowerProtect Data Domain <8.6.0.0 - Info Disclosure

CVE-2026-34164 MEDIUM

Valtimo: Sensitive data exposure through inbox message logging in InboxHandlingService

CVE-2026-31987 HIGH

Apache Airflow: JWT token appearing in logs

CVE-2026-20205 HIGH

Sensitive Information Disclosure in ''_internal'' index in Splunk MCP Server app

CVE-2026-40091 MEDIUM

SpiceDB: SPICEDB_DATASTORE_CONN_URI is leaked on startup logs

CVE-2026-32218 MEDIUM

Windows Kernel Information Disclosure Vulnerability

CVE-2026-32217 MEDIUM

Windows Kernel Information Disclosure Vulnerability

CVE-2026-32215 MEDIUM

Windows Kernel Information Disclosure Vulnerability

CVE-2026-0207 HIGH

Sensitive Information Logging Vulnerability in FlashBlade

CVE-2026-2401 MEDIUM

Schneider Electric PowerChute Serial Shutdown <=1.4 - Info Disclosure

CVE-2026-34487 HIGH

Apache Tomcat: Cloud membership for clustering component exposed the Kubernetes bearer token

CVE-2026-4901 MEDIUM

Insertion of Sesitive Information into Log File in Hydrosystem Control System

CVE-2026-28261 HIGH

Dell Elastic Cloud Storage <=3.8.1.7 - Info Disclosure

CVE-2026-4788 HIGH

IBM Tivoli Netcool Impact 7.1.0.0-7.1.0.37 - Sensitive Log Disclosure

CVE-2026-27315 MEDIUM

Apache Cassandra: cqlsh history sensitive information leak

Previous Page 2 of 46 Next

Details

Vulnerabilities 1,137

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy