Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-532

CWE-532

Medium likelihood

Insertion of Sensitive Information into Log File

Parent: CWE-538 - Insertion of Sensitive Information into Externally-Accessible File or Directory

The product writes sensitive information to a log file.

1,137 vulnerabilities with CWE-532

CVE-2022-25518 MEDIUM

CMDBuild 3.0-3.3.2 - Sensitive Information Disclosure in Temporary Log Table

CVE-2022-0652 LOW

Sophos UTM <9.710 - Info Disclosure

CVE-2022-25830 LOW

Samsung Galaxy Watch3 Plugin < 2.2.03.22012751 - Information Exposure via Log File

CVE-2022-25829 LOW

Samsung Watch Active2 Plugin < 2.2.08.22012751 - Information Exposure via Log File

CVE-2022-25828 LOW

Samsung Watch Active Plugin < 2.2.07.22012751 - Information Exposure via Log File

CVE-2022-25827 LOW

Samsung Galaxy Watch Plugin < 2.2.05.22012751 - Information Exposure via Log File

CVE-2022-25826 LOW

Samsung Galaxy Watch 3 Plugin < 2.2.03.22012751 - Sensitive Information Exposure in Log Files

CVE-2022-25823 LOW

Samsung Galaxy Watch Plugin < 2.2.05.220126741 - Information Exposure via Log File

CVE-2022-0725 HIGH

KeePass - Information Exposure via Plain Text Password Logging

CVE-2022-25374 HIGH

Terraform Enterprise < 202202-1 - Sensitive Data Exposure via HTTP Request Logging

CVE-2022-20630 MEDIUM

Cisco Catalyst Center 2.1.2.0-2.2.2.8 - Authenticated Sensitive Information Exposure in Audit Log

CVE-2022-0021 LOW

GlobalProtect 5.2 < 5.2.9 - Cleartext Credential Exposure in Log Files

CVE-2022-22939 MEDIUM

VMware Cloud Foundation 3.0-3.10.2.2 - Credential Disclosure in SDDC Manager Log Files

CVE-2022-0338 MEDIUM

Conda loguru <0.5.3 - Info Disclosure

CVE-2022-22703 MEDIUM

Stormshield SSO Agent 2.x < 2.1.1 and 3.x < 3.0.2 - Sensitive Information Exposure in Installer Log File

CVE-2021-21508 MEDIUM

Dell VxRail < 7.0.200 - Insertion of Sensitive Information into Log File

CVE-2021-22533 MEDIUM

OpenText eDirectory 9.2.4.0000 - Info Disclosure

CVE-2021-22518 MEDIUM

OpenText Identity Manager AzureAD Driver <5.1.4.0 - Info Disclosure

CVE-2021-22143 LOW

Elastic APM .NET Agent < 1.10.0 - Sensitive Information Exposure via HTTP Header Logging

CVE-2021-32050 MEDIUM

MongoDB Drivers - Sensitive Information Exposure via Command Listener Event Publication

CVE-2021-3429 MEDIUM

cloud-init < 21.2 - Sensitive Information Disclosure via World-Readable Log File

CVE-2021-3684 MEDIUM

OpenShift Assisted Installer < 1.0.25.3 - Authenticated Image Pull Secret Exposure in Installation Logs

CVE-2021-36544 HIGH

tpcms 3.2 - Incorrect Access Control and Sensitive Information Exposure via Application URL

CVE-2021-39011 MEDIUM

IBM Cloud Pak for Security - Info Disclosure

CVE-2021-44862 HIGH

Netskope < 91 - Authenticated Sensitive Information Exposure in Client Logs

Previous Page 29 of 46 Next

Details

Vulnerabilities 1,137

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy