Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-532

CWE-532

Medium likelihood

Insertion of Sensitive Information into Log File

Parent: CWE-538 - Insertion of Sensitive Information into Externally-Accessible File or Directory

The product writes sensitive information to a log file.

1,137 vulnerabilities with CWE-532

CVE-2020-26199 MEDIUM

Dell EMC Unity, Unity XT, and UnityVSA < 5.0.4.0.5.012 - Plain-Text Password Storage in Log Files

CVE-2020-0476 MEDIUM

Android 11 - Sensitive Information Disclosure via Assistant.java Log Leak

CVE-2020-35234 HIGH

Easy WP SMTP < 1.4.4 - Administrator Account Takeover via Password Reset Link Exposure in Debug Log

CVE-2020-26416 MEDIUM

GitLab 8.4.0-13.4.6 13.5.0-13.5.4 13.6.0-13.6.1 - Information Disclosure in Advanced Search

CVE-2020-8566 MEDIUM

Kubernetes <1.19.3-<1.18.10-<1.17.13 - Info Disclosure

CVE-2020-8565 MEDIUM

Kubernetes <= 1.19.3, <= 1.18.10, <= 1.17.13, < 1.20.0-alpha.2 - Sensitive Information Disclosure in Log Files

CVE-2020-8564 MEDIUM

Kubernetes <v1.19.3,v1.18.10,v1.17.13 - Info Disclosure

CVE-2020-8563 MEDIUM

Kubernetes <v1.19.3 - Info Disclosure

CVE-2020-6317 LOW

SAP Adaptive Server Enterprise 15.7, 16.0 - Sensitive Information Exposure in Installation Log Files

CVE-2020-4900 MEDIUM

IBM Business Automation Workflow 19.0.0.3 - Sensitive Information Exposure in Log Files

CVE-2020-25640 MEDIUM

WildFly < 21.0.0 - Sensitive Information Disclosure in Resource Adapter Logs

CVE-2020-10763 MEDIUM

Heketi < 10.1.0 - Sensitive Information Disclosure in Log Files

CVE-2020-10762 MEDIUM

gluster-block <0.5.1 - Info Disclosure

CVE-2020-4671 MEDIUM

IBM Sterling B2B Integrator 5.2.0.0-5.2.6.5 and 6.0.0.0-6.0.3.2 - Sensitive Information Exposure in Log Files

CVE-2020-2048 LOW

PAN-OS 8.1.0-8.1.16 - Sensitive Information Exposure in Log Files

CVE-2020-11646 MEDIUM

B&R GateManager 4260/9250 <9.0.20262 and 8250 <9.2.620236042 - Authenticated Log Information Disclosure

CVE-2020-11643 MEDIUM

B&R GateManager 4260/9250 <9.0.20262 & 8250 <9.2.620236042 - Authenticated Info Disclosure via Log File Insertion

CVE-2020-5389 MEDIUM

Dell EMC OpenManage Integration for Microsoft System Center < 7.2.1 - Sensitive Information Disclosure in Log Files

CVE-2020-26605 HIGH

Samsung Mobile <Q(10.0),R(11.0) - Info Disclosure

CVE-2020-25987 HIGH

MonoCMS Blog 1.0 - Hardcoded Credentials in Log File

CVE-2020-9486 HIGH

Apache NiFi 1.10.0-1.11.4 - Sensitive Information Disclosure in Stateless Execution Engine Logs

CVE-2020-15370 MEDIUM

Brocade Fabric OS <7.4.2g - Info Disclosure

CVE-2020-14332 MEDIUM

Ansible Engine 2.8.0-2.8.13 - Sensitive Information Exposure in Module Args via Check Mode

CVE-2020-14330 MEDIUM

Ansible Engine < 2.9.12 and Ansible < 2.10.0 - Sensitive Information Exposure in URI Module Logs

CVE-2020-2044 LOW

PAN-OS 8.0.0-8.0.19 - Sensitive Information Exposure in opcmdhistory.log

Previous Page 34 of 46 Next

Details

Vulnerabilities 1,137

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy