Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-532

CWE-532

Medium likelihood

Insertion of Sensitive Information into Log File

Parent: CWE-538 - Insertion of Sensitive Information into Externally-Accessible File or Directory

The product writes sensitive information to a log file.

1,137 vulnerabilities with CWE-532

CVE-2023-39348 MEDIUM

Spinnaker - Sensitive Information Disclosure in GitHub Status Notification Logs

CVE-2023-38733 MEDIUM

IBM Robotic Process Automation <23.0.1 - Info Disclosure

CVE-2023-38732 MEDIUM

IBM Robotic Process Automation <21.0.8 - Info Disclosure

CVE-2023-40338 MEDIUM

Jenkins Folders Plugin < 6.846.v23698686f0f6 - Information Exposure via Scan Organization Folder Log Error Message

CVE-2023-32491 MEDIUM

Dell PowerScale OneFS 9.5.0.0-9.5.0.2 - Sensitive Information Disclosure via SNMPv3 Log Insertion

CVE-2023-4108 MEDIUM

Mattermost 7.8.0-7.8.7 - Sensitive Information Disclosure in Audit Logs

CVE-2023-36494 MEDIUM

F5OS-A - Sensitive Information Disclosure in Audit Logs

CVE-2023-3993 MEDIUM

GitLab 14.3-16.0.7, 16.1-16.1.2, 16.2-16.2.1 - Sensitive Information Disclosure in Log Files

CVE-2023-31426 MEDIUM

Brocade Fabric OS <9.1.1c, 8.2.3d, 9.2.0 - Info Disclosure

CVE-2023-32468 MEDIUM

Dell ECS Streamer < 2.0.7.1 - Sensitive Data Exposure via Log File Insertion

CVE-2023-20891 MEDIUM

VMware Tanzu Application Service for VMs and Isolation Segment 2.11.0-2.11.34 - Credential Disclosure in Audit Logs

CVE-2023-32478 CRITICAL

Dell PowerStoreOS < 3.5.0.1 - Sensitive Information Disclosure via Log File Insertion

CVE-2023-32455 MEDIUM

Dell Wyse ThinOS < 9.3.2102 - Unauthenticated Sensitive Information Disclosure via Log Files

CVE-2023-32447 MEDIUM

Dell Wyse ThinOS < 9.4.2103 - Sensitive Information Disclosure via Log File

CVE-2023-32446 MEDIUM

Dell Wyse ThinOS < 2303 (9.4.1141) - Unauthenticated Sensitive Information Disclosure via Log Files

CVE-2023-26026 MEDIUM

Planning Analytics Cartridge - Info Disclosure

CVE-2023-26023 MEDIUM

Planning Analytics Cartridge - Info Disclosure

CVE-2023-37224 MEDIUM

Archer Platform < 6.13.0.1 - Authenticated Sensitive Information Exposure via Log Files

CVE-2023-3363 LOW

Gitlab CE/EE <15.11.10, <16.0.6, <16.1.1 - Info Disclosure

CVE-2023-20207 MEDIUM

Cisco Duo Authentication Proxy - Info Disclosure

CVE-2023-38067 MEDIUM

JetBrains TeamCity < 2023.05.1 - Sensitive Information Disclosure in Agent Log

CVE-2023-38064 MEDIUM

JetBrains TeamCity < 2023.05.1 - Sensitive Information Disclosure in Agent Log

CVE-2023-35695 HIGH

Trend Micro Mobile Security Enterprise 9.8 SP5 - Sensitive Information Exposure via Log File Download

CVE-2023-32392 MEDIUM

iPadOS < 16.5 - Sensitive Location Information Exposure via Log File

CVE-2023-20885 MEDIUM

Cloud Foundry Notifications <63, SMB-volume <3.1.19, cf-nfs-volume 5.0.0-5.0.26 - Credential Exposure

Previous Page 22 of 46 Next

Details

Vulnerabilities 1,137

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy