Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-532

CWE-532

Medium likelihood

Insertion of Sensitive Information into Log File

Parent: CWE-538 - Insertion of Sensitive Information into Externally-Accessible File or Directory

The product writes sensitive information to a log file.

1,137 vulnerabilities with CWE-532

CVE-2025-9985 MEDIUM

Featured Image from URL (FIFU) <= 5.2.7 - Unauthenticated Sensitive Information Exposure via Publicly Exposed Log Files

CVE-2025-34188 HIGH

Vasion Print Virtual Appliance Host <1.0.735 & Application <20.0.1330 - Cleartext Session Token Exposure

CVE-2025-34183 HIGH

Ilevia EVE X1 Server <= 4.7.18.0.eden - Unauthenticated Credential Exposure via Log File Disclosure

CVE-2025-43354 MEDIUM

Apple VisionOS <26 - Info Disclosure

CVE-2025-43303 MEDIUM

Apple VisionOS <26 - Info Disclosure

CVE-2025-4234 LOW

Palo Alto Networks Cortex XDR Microsoft 365 Defender Pack - Info Di...

CVE-2025-54376 HIGH

Hoverfly < 1.12.0 - Unauthenticated Sensitive Information Exposure via Admin WebSocket Endpoint

CVE-2025-43888 HIGH

Dell PowerProtect Data Manager < 19.21 - Insertion of Sensitive Information into Log File

CVE-2025-10221 MEDIUM

AxxonSoft Axxon One < 2.0.4 - Sensitive Information Exposure in ARP Agent Log Files

CVE-2025-7445 MEDIUM

Kubernetes secrets-store-sync-controller <0.0.2 - Info Disclosure

CVE-2025-23261 MEDIUM

NVIDIA Cumulus Linux/NVOS - Info Disclosure

CVE-2025-8663 MEDIUM

upKeeper Manager 5.0.0-5.2.11 - Sensitive Information Disclosure in Log Files

CVE-2025-41690 HIGH

Endress+Hauser Promag 10 and Promass 10 - Unauthenticated Sensitive Information Exposure via Event Log

CVE-2025-36133 MEDIUM

IBM App Connect Enterprise 9.2.0-11.6.0, 12.0.0-12.0.14, 12.1.0-12.14.0 - Sensitive Information Exposure

CVE-2025-57813 MEDIUM

traQ < 3.25.0 - Sensitive Information Disclosure in SQL Error Logs

CVE-2025-3456 LOW

Arista EOS 4.29.0-4.34.0F - Sensitive Information Disclosure in Log Files

CVE-2025-7426 CRITICAL

MINOVA TTA - Unauthenticated Exposure of FTP Credentials via Debug Port

CVE-2025-55285 LOW

@backstage/plugin-scaffolder-backend <2.1.1 - Info Disclosure

CVE-2025-38745 MEDIUM

Dell OpenManage Enterprise 3.10, 4.0, 4.1, 4.2 - Sensitive Information Exposure via Backup and Restore Log

CVE-2025-24520 LOW

Intel(R) Local Manageability Service <2514.7.16.0 - Info Disclosure

CVE-2025-42935 MEDIUM

SAP NetWeaver Application Server ABAP - Info Disclosure

CVE-2025-8864 MEDIUM

Shared Access Signature token exposure - Info Disclosure

CVE-2025-48709 LOW

BMC Control-M/Server 9.0.21.300 - Info Disclosure

CVE-2025-54781 LOW

Himmelblau <1.1.0 - Info Disclosure

CVE-2025-23289 MEDIUM

NVIDIA Omniverse Launcher - Info Disclosure

Previous Page 7 of 46 Next

Details

Vulnerabilities 1,137

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy