Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-532

CWE-532

Medium likelihood

Insertion of Sensitive Information into Log File

Parent: CWE-538 - Insertion of Sensitive Information into Externally-Accessible File or Directory

The product writes sensitive information to a log file.

1,137 vulnerabilities with CWE-532

CVE-2018-16095 MEDIUM

Lenovo System Management Module Firmware < 1.06 - Sensitive Information Disclosure via Debug Log

CVE-2018-1876 MEDIUM

IBM Robotic Process Automation with Automation Anywhere 11 - Sensitive Information Exposure in Log Files

CVE-2018-17922 CRITICAL

Circontrol CirCarLife < 4.3.1 - Unauthenticated Cleartext Credential Exposure in Log File

CVE-2018-1788 MEDIUM

IBM Spectrum Protect Server 7.1.0.0-7.1.8.9 - Sensitive Information Disclosure in Trace Logs

CVE-2018-17447 HIGH

Citrix NetScaler SD-WAN 9.3.0-9.3.5 and SD-WAN 10.0.0-10.0.3 - Insertion of Sensitive Information into Log File

CVE-2018-15763 CRITICAL

Pivotal Container Service < 1.2.0 - IaaS Credential Exposure in Application Logs

CVE-2018-1264 CRITICAL

Cloud Foundry Log Cache < 1.1.1 - Sensitive Information Exposure via UAA Client Secret Logging

CVE-2018-0504 MEDIUM

MediaWiki 1.27.0-1.27.4 and 1.31.0 - Information Disclosure in Special:Redirect/logid

CVE-2018-16049 CRITICAL

GitLab 8.10.0-11.0.5, 11.1.0-11.1.4, 11.2.0-11.2.1 - Sensitive Data Disclosure in Sidekiq Logs

CVE-2018-1768 MEDIUM

IBM Spectrum Protect Plus 10.1.0 and 10.1.1 - Sensitive Information Disclosure in Instrumentation Log File

CVE-2018-3828 HIGH

Elastic Cloud Enterprise < 1.1.4 - Sensitive Information Exposure in Allocator Logs

CVE-2018-3827 HIGH

Elasticsearch repository-azure - Sensitive Data Disclosure via TRACE Level Logging

CVE-2018-1223 HIGH

Cloud Foundry Container Runtime < 0.14.0 - Sensitive Information Disclosure in Application Logs

CVE-2018-1198 HIGH

Pivotal Cloud Cache <1.3.1 - Info Disclosure

CVE-2018-6599 MEDIUM

Orbic Wonder RC555L Firmware - Sensitive Information Exposure via Android Log Dump to SD Card

CVE-2018-3776 MEDIUM

Nextcloud Server 11.0.0-11.0.5 - Audit Log Bypass via Input Validation Issue

CVE-2018-7754 MEDIUM

Linux kernel <4.16.4rc4 - Info Disclosure

CVE-2018-1999036 MEDIUM

Jenkins SSH Agent Plugin <1.15 - Info Disclosure

CVE-2018-6971 HIGH

VMware Horizon View Agents 7.0.0-7.5.0 - Local Information Disclosure via Insecure Logging

CVE-2018-11717 CRITICAL

Zoho ManageEngine Desktop Central < 100251 - Sensitive Information Exposure in Log Files

CVE-2018-11716 CRITICAL

ManageEngine Desktop Central < 100230 - Unauthenticated Sensitive Information Exposure via Log File Access

CVE-2018-0042 CRITICAL

Juniper Contrail Service Orchestration < 4.0.0 - Sensitive Information Disclosure via Log File

CVE-2018-2440 MEDIUM

SAP Dynamic Authorization Management - Sensitive Information Exposure in Application Logs

CVE-2018-10889 MEDIUM

moodle 3.3.0-3.3.6, 3.5.0 - Sensitive Information Disclosure in Data Privacy Export Logs

CVE-2018-10855 MEDIUM

Ansible 2.4-2.4.4 and 2.5.0a1-2.5.4 - Sensitive Information Disclosure in Log Files

Previous Page 42 of 46 Next

Details

Vulnerabilities 1,137

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy