CVE-2023-51390

HIGH Year: 2023
CVSS v3 Score
7.5
High
Weakness Type
CWE-215
View all →

Vulnerability Description

journalpump is a daemon that takes log messages from journald and pumps them to a given output. A logging vulnerability was found in journalpump which logs out the configuration of a service integration in plaintext to the supplied logging pipeline, including credential information contained in the configuration if any. The problem has been patched in journalpump 2.5.0.

Related Vulnerabilities

CVE-2025-27684

HIGH
CVSS:7.5(High)

Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 1.0.735 Application 20.0.1330 allows Debug Bundle Contains Sensitive Data V-2022-003.

CWE-2152025

CVE-2019-3781

HIGH
CVSS:8.2(High)

Cloud Foundry CLI, versions prior to v6.43.0, improperly exposes passwords when verbose/trace/debugging is turned on. A local unauthenticated or remote authenticated malicious user with access to logs...

CWE-2152019

CVE-2018-1191

HIGH
CVSS:8.8(High)

Cloud Foundry Garden-runC, versions prior to 1.11.0, contains an information exposure vulnerability. A user with access to Garden logs may be able to obtain leaked credentials and perform authenticate...

CWE-2152018

CVE-2022-0721

HIGH
CVSS:8.8(High)

Insertion of Sensitive Information Into Debugging Code in GitHub repository microweber/microweber prior to 1.3.

CWE-2152022

CVE-2024-7569

CRITICAL
CVSS:9.8(Critical)

An information disclosure vulnerability in Ivanti ITSM on-prem and Neurons for ITSM versions 2023.4 and earlier allows an unauthenticated attacker to obtain the OIDC client secret via debug informatio...

CWE-2152024

CVE-2018-1191

HIGH
CVSS:8.8(High)

Cloud Foundry Garden-runC, versions prior to 1.11.0, contains an information exposure vulnerability. A user with access to Garden logs may be able to obtain leaked credentials and perform authenticate...

CWE-2152018