CVE-2023-32550

HIGH Year: 2023
CVSS v3 Score
8.2
High
Weakness Type
CWE-497
View all →

Vulnerability Description

Landscape's server-status page exposed sensitive system information. This data leak included GET requests which contain information to attack and leak further information from the Landscape API.

Related Vulnerabilities

CVE-2023-4237

HIGH
CVSS:7.8(High)

A flaw was found in the Ansible Automation Platform. When creating a new keypair, the ec2_key module prints out the private key directly to the standard output. This flaw allows an attacker to fetch t...

CWE-4972023

CVE-2022-20664

HIGH
CVSS:7.7(High)

A vulnerability in the web management interface of Cisco Secure Email and Web Manager, formerly Cisco Security Management Appliance (SMA), and Cisco Email Security Appliance (ESA) could allow an authe...

CWE-4972022

CVE-2025-0061

HIGH
CVSS:8.7(High)

SAP BusinessObjects Business Intelligence Platform allows an unauthenticated attacker to perform session hijacking over the network without any user interaction, due to an information disclosure vulne...

CWE-4972025

CVE-2025-30686

HIGH
CVSS:7.6(High)

Vulnerability in the Oracle Hospitality Simphony product of Oracle Food and Beverage Applications (component: EMC). Supported versions that are affected are 19.1-19.7. Easily exploitable vulnerability...

CWE-4972025

CVE-2022-1902

HIGH
CVSS:8.8(High)

A flaw was found in the Red Hat Advanced Cluster Security for Kubernetes. Notifier secrets were not properly sanitized in the GraphQL API. This flaw allows authenticated ACS users to retrieve Notifier...

CWE-4972022