CVE-2023-41263

LOW Year: 2023
CVSS v3 Score
3.7
Low
Weakness Type
CWE-532
View all →

Vulnerability Description

An issue was discovered in Plixer Scrutinizer before 19.3.1. It exposes debug logs to unauthenticated users at the /debug/ URL path. With knowledge of valid IP addresses and source types, an unauthenticated attacker can download debug logs containing application-related information.

Related Vulnerabilities

CVE-2021-38939

LOW
CVSS:3.7(Low)

IBM QRadar SIEM 7.3, 7.4, and 7.5 stores potentially sensitive information in log files that could be read by an user with access to creating domains. IBM X-Force ID: 211037.

CWE-5322021

CVE-2021-3039

LOW
CVSS:3.8(Low)

An information exposure through log file vulnerability exists in the Palo Alto Networks Prisma Cloud Compute Console where a secret used to authorize the role of the authenticated user is logged to a ...

CWE-5322021

CVE-2023-3363

LOW
CVSS:3.8(Low)

An information disclosure issue in Gitlab CE/EE affecting all versions from 13.6 prior to 15.11.10, all versions from 16.0 prior to 16.0.6, all versions from 16.1 prior to 16.1.1, resulted in the Side...

CWE-5322023

CVE-2021-21597

LOW
CVSS:3.9(Low)

Dell Wyse ThinOS, version 9.0, contains a Sensitive Information Disclosure Vulnerability. An authenticated malicious user with physical access to the system could exploit this vulnerability to read se...

CWE-5322021

CVE-2021-21598

LOW
CVSS:3.9(Low)

Dell Wyse ThinOS, versions 9.0, 9.1, and 9.1 MR1, contain a Sensitive Information Disclosure Vulnerability. An authenticated attacker with physical access to the system could exploit this vulnerabilit...

CWE-5322021

CVE-2017-9271

MEDIUM
CVSS:4.0(Medium)

The commandline package update tool zypper writes HTTP proxy credentials into its logfile, allowing local attackers to gain access to proxies used.

CWE-5322017