Obtain Information

Mattermost information disclosure | CVE-2023-1831

April 20, 2023

NAME__________Mattermost information disclosurePlatforms Affected:Risk Level:7.2Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Mattermost could allow a remote authenticated attacker to obtain sensitive information, caused by the...

Gatsby gatsby-plugin-sharp plugin directory traversal | CVE-2023-30548

April 20, 2023

NAME__________Gatsby gatsby-plugin-sharp plugin directory traversalPlatforms Affected:Gatsby gatsby-plugin-sharp 4.25.0 Gatsby gatsby-plugin-sharp 5.8.0Risk Level:4.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Gatsby gatsby-plugin-sharp plugin could allow a remote...

PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft Server unspecified | CVE-2023-21916

April 20, 2023

NAME__________PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft Server unspecifiedPlatforms Affected:Oracle PeopleSoft Enterprise PeopleTools 8.58 Oracle PeopleSoft Enterprise PeopleTools 8.59 Oracle...

Oracle Essbase unspecified | CVE-2023-21942

April 20, 2023

NAME__________Oracle Essbase unspecifiedPlatforms Affected:Oracle Essbase 21.4Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________An unspecified vulnerability in Oracle Essbase related to the Security and Provisioning...

Oracle WebLogic Server product of Oracle Fusion Middleware unspecified | CVE-2023-21931

April 20, 2023

NAME__________Oracle WebLogic Server product of Oracle Fusion Middleware unspecifiedPlatforms Affected:Oracle WebLogic Server 14.1.1.0.0 Oracle WebLogic Server 12.2.1.4.0 Oracle WebLogic Server...

Oracle Financial Services Behavior Detection Platform unspecified | CVE-2023-21902

April 20, 2023

NAME__________Oracle Financial Services Behavior Detection Platform unspecifiedPlatforms Affected:Oracle Financial Services Behavior Detection Platform 8.0.8.1Risk Level:4.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________An unspecified vulnerability in...

Oracle Essbase unspecified | CVE-2023-21944

April 20, 2023

XWiki Platform information disclosure | CVE-2023-29517

April 20, 2023

NAME__________XWiki Platform information disclosurePlatforms Affected:Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________XWiki Platform could allow a remote attacker to obtain sensitive information, caused by...

Oracle Essbase unspecified | CVE-2023-21943

April 20, 2023

Omron CS/CJ Series information disclosure | CVE-2022-45794

April 20, 2023

NAME__________Omron CS/CJ Series information disclosurePlatforms Affected:OMRON SYSMAC CJ2H-CPU6-EIP OMRON SYSMAC CJ2H-CPU6 OMRON SYSMAC CJ1G-CPUP OMRON SYSMAC CS1H-CPUH OMRON SYSMAC CS1G-CPUH...

Oracle Health Sciences InForm unspecified | CVE-2023-21926

April 20, 2023

NAME__________Oracle Health Sciences InForm unspecifiedPlatforms Affected:Oracle Health Sciences InForm 7.0.0.0 Oracle Health Sciences InForm 6.3.1.2Risk Level:5.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________An unspecified vulnerability...

Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE unspecified | CVE-2023-21930

April 20, 2023

NAME__________Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE unspecifiedPlatforms Affected:Oracle GraalVM Enterprise Edition 20.3.5 Oracle GraalVM...

Cisco Industrial Network Director information disclosure | CVE-2023-20039

April 20, 2023

NAME__________Cisco Industrial Network Director information disclosurePlatforms Affected:Risk Level:5.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Cisco Industrial Network Director could allow a local authenticated attacker to...

D-Link DSL-124 Wireless N300 ADSL2 file disclosure |

April 20, 2023

NAME__________D-Link DSL-124 Wireless N300 ADSL2 file disclosurePlatforms Affected:D-Link DSL-124 Wireless N300 ADSL2+ ME_1.00Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________D-Link DSL-124 Wireless N300 ADSL2+...

SecurePoint UTM information disclosure | CVE-2023-22897

April 18, 2023

NAME__________SecurePoint UTM information disclosurePlatforms Affected:Risk Level:6.5Exploitability:Proof of ConceptConsequences:Obtain Information DESCRIPTION__________SecurePoint UTM could allow a remote authenticated attacker to obtain sensitive...

TigerGraph Enterprise information disclosure | CVE-2023-22949

April 18, 2023

NAME__________TigerGraph Enterprise information disclosurePlatforms Affected:Risk Level:6.8Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________TigerGraph Enterprise could allow a remote authenticated attacker to obtain sensitive information, caused...

TigerGraph Enterprise information disclosure | CVE-2023-22950

April 18, 2023

NAME__________TigerGraph Enterprise information disclosurePlatforms Affected:Risk Level:6.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________TigerGraph Enterprise could allow a remote authenticated attacker to obtain sensitive information, caused...

TigerGraph Enterprise information disclosure | CVE-2023-22948

April 18, 2023

NAME__________TigerGraph Enterprise information disclosurePlatforms Affected:Risk Level:7.7Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________TigerGraph Enterprise could allow a remote authenticated attacker to obtain sensitive information, caused...

Roxy-WI directory traversal | CVE-2023-29004

April 18, 2023

NAME__________Roxy-WI directory traversalPlatforms Affected:Roxy-WI Roxy-WI 6.3.9.0Risk Level:6.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Roxy-WI could allow a remote authenticated attacker to traverse directories on the...

Apache Superset information disclosure | CVE-2023-27525

April 18, 2023

NAME__________Apache Superset information disclosurePlatforms Affected:Apache Superset 2.0.1Risk Level:6.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Apache Superset could allow a remote authenticate attacker to obtain sensitive...

HPE OneView Global Dashboard (OVGD) information disclosure | CVE-2023-28085

April 17, 2023

NAME__________HPE OneView Global Dashboard (OVGD) information disclosurePlatforms Affected:HPE OneView Global Dashboard 2.71Risk Level:7.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________HPE OneView Global Dashboard (OVGD) could...

HPE OneView Global Dashboard (OVGD) information disclosure | CVE-2023-28084

April 17, 2023

NAME__________HPE OneView Global Dashboard (OVGD) information disclosurePlatforms Affected:HPE OneView Global Dashboard 2.71Risk Level:7.8Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________HPE OneView Global Dashboard (OVGD) could...

Matrix matrix-js-sdk information disclosure | CVE-2023-29529

April 17, 2023

NAME__________Matrix matrix-js-sdk information disclosurePlatforms Affected:Matrix matrix-js-sdk 24.0.0Risk Level:5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Matrix matrix-js-sdk could allow a remote authenticated attacker to obtain sensitive...

Jubei JB Inquiry information disclosure | CVE-2023-27510

April 17, 2023

NAME__________Jubei JB Inquiry information disclosurePlatforms Affected:Jubei JB Inquiry 0.6.1 Jubei JB Inquiry 0.6.0 Jubei JB Inquiry 0.5.2 Jubei JB Inquiry...

Obtain Information

Mattermost information disclosure | CVE-2023-1831

Gatsby gatsby-plugin-sharp plugin directory traversal | CVE-2023-30548

PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft Server unspecified | CVE-2023-21916

Oracle Essbase unspecified | CVE-2023-21942

Oracle WebLogic Server product of Oracle Fusion Middleware unspecified | CVE-2023-21931

Oracle Financial Services Behavior Detection Platform unspecified | CVE-2023-21902

Oracle Essbase unspecified | CVE-2023-21944

XWiki Platform information disclosure | CVE-2023-29517

Oracle Essbase unspecified | CVE-2023-21943

Omron CS/CJ Series information disclosure | CVE-2022-45794

Oracle Health Sciences InForm unspecified | CVE-2023-21926

Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE unspecified | CVE-2023-21930

Cisco Industrial Network Director information disclosure | CVE-2023-20039

D-Link DSL-124 Wireless N300 ADSL2 file disclosure |

SecurePoint UTM information disclosure | CVE-2023-22897

TigerGraph Enterprise information disclosure | CVE-2023-22949

TigerGraph Enterprise information disclosure | CVE-2023-22950

TigerGraph Enterprise information disclosure | CVE-2023-22948

Roxy-WI directory traversal | CVE-2023-29004

Apache Superset information disclosure | CVE-2023-27525

HPE OneView Global Dashboard (OVGD) information disclosure | CVE-2023-28085

HPE OneView Global Dashboard (OVGD) information disclosure | CVE-2023-28084

Matrix matrix-js-sdk information disclosure | CVE-2023-29529

Jubei JB Inquiry information disclosure | CVE-2023-27510

CVE Alert: CVE-2024-53865

CVE Alert: CVE-2024-36624

CVE Alert: CVE-2024-53979

CVE Alert: CVE-2024-47193

CVE Alert: CVE-2024-49360

You may have missed