Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-532

CWE-532

Medium likelihood

Insertion of Sensitive Information into Log File

Parent: CWE-538 - Insertion of Sensitive Information into Externally-Accessible File or Directory

The product writes sensitive information to a log file.

1,137 vulnerabilities with CWE-532

CVE-2023-49923 MEDIUM

Elastic Enterprise Search 7.0.0-7.17.16 - Sensitive Information Disclosure in App Search Documents API Logs

CVE-2023-36649 CRITICAL

ProLion CryptoSpike 3.0.15P2 - Info Disclosure

CVE-2023-6460 MEDIUM

nodejs-firestore <6.1.0 - Info Disclosure

CVE-2023-6287 LOW

Tribe29 Checkmk Appliance <1.6.8 - Info Disclosure

CVE-2023-48708 MEDIUM

CodeIgniter Shield <1.0.0-beta.8 - Info Disclosure

CVE-2023-4677 HIGH

Pandora FMS <= 772 - Unauthenticated Administrator Session ID Exposure via Cron Log Backup Files

CVE-2023-25682 MEDIUM

IBM Sterling B2B Integrator 6.0.0.0-6.0.3.8 and 6.1.0.0-6.1.2.1 - Sensitive Information Disclosure in Log Files

CVE-2023-46672 HIGH

Logstash 8.10.0-8.11.0 - Sensitive Information Disclosure in JSON Logs

CVE-2023-32283 MEDIUM

Intel On Demand - Sensitive Information Insertion into Log File

CVE-2023-45585 LOW

FortiSIEM <=7.0.0 - Authenticated Sensitive Information Disclosure in Debug Log Files

CVE-2023-47390 HIGH

Headscale < 0.22.3 - Sensitive Information Exposure via Log File

CVE-2023-0436 MEDIUM

MongoDB Atlas Kubernetes Operator 1.5.0-1.7.0 - Sensitive Information Exposure in DEBUG Logs

CVE-2023-46255 MEDIUM

SpiceDB <1.27.0-rc1 - Info Disclosure

CVE-2023-21387 MEDIUM

Android < 14.0 - Local Information Disclosure via User Backup Manager Log

CVE-2023-46215 HIGH

Apache Airflow <2.6.3, <3.4.0 - Info Disclosure

CVE-2023-31417 MEDIUM

Elasticsearch 7.0.0-7.17.12 - Sensitive Information Exposure in Audit Logs via Deprecated API URIs

CVE-2023-31422 CRITICAL

Elastic Kibana <8.10.1 - Info Disclosure

CVE-2023-46667 HIGH

Fleet Server <8.10.3 - Info Disclosure

CVE-2023-46668 MEDIUM

Elastic Endpoint <8.10.3 - Info Disclosure

CVE-2023-42857 LOW

iPadOS < 17.1 - Unprotected User Data Exposure via Log File Insertion

CVE-2023-41254 MEDIUM

iPadOS < 16.7.2 - Sensitive Information Disclosure in Log Entries

CVE-2023-40425 MEDIUM

macOS 12.0.0-12.7.0 - Unprotected User Data Exposure via Log File

CVE-2023-40405 LOW

macOS - Unprotected Sensitive Location Information Exposure in Log Files

CVE-2023-44483 MEDIUM

Apache Santuario XML Security for Java < 2.2.6, 2.3.0-2.3.4 - Private Key Disclosure in Log Files

CVE-2023-45825 MEDIUM

ydb-go-sdk 3.48.6-3.53.2 - Sensitive Information Exposure in Log Files via Credentials Serialization

Previous Page 20 of 46 Next

Details

Vulnerabilities 1,137

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy