Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: vendors Tag: cwe-522 Clear
ID Title
CVE-2026-14019 Vulnerability in google (CVE-2026-14019)
vulnerability in google (CVE-2026-14019). Confidential information can be exposed externally.
CVE-2026-53840 Vulnerability in openclaw (CVE-2026-53840)
vulnerability in openclaw (CVE-2026-53840). Confidential information can be exposed externally. Mitigation: upgrade to `2026.5.12` or later.
CVE-2024-45636 Vulnerability in ibm (CVE-2024-45636)
vulnerability in ibm (CVE-2024-45636). Confidential information can be exposed externally.
CVE-2026-7312 Vulnerability in progress (CVE-2026-7312)
vulnerability in progress (CVE-2026-7312). Confidential information can be exposed externally.
CVE-2026-7313 CWE‑522: Insufficiently Protected Credentials in web services in Progress Sitefinity version from...
CWE‑522: Insufficiently Protected Credentials in web services in Progress Sitefinity version from...
CVE-2026-49379 In JetBrains TeamCity before 2026.1 credentials could be exposed in thread names
In JetBrains TeamCity before 2026.1 credentials could be exposed in thread names
CVE-2026-46511 Vulnerability in @haxtheweb/haxcms-nodejs (CVE-2026-46511)
vulnerability in @haxtheweb/haxcms-nodejs (CVE-2026-46511). Risk of unauthorized operations or information disclosure. Exploitable via ``jwt``. Mitigation: upgrade to `26.0.0` or later.
CVE-2026-46440 Vulnerability in flowise (CVE-2026-46440)
vulnerability in flowise (CVE-2026-46440). Confidential information can be exposed externally. Mitigation: upgrade to `3.1.2` or later.
CVE-2026-45091 Information Disclosure in sealed-env (CVE-2026-45091)
vulnerability in sealed-env (CVE-2026-45091). Confidential information can be exposed externally. Mitigation: upgrade to `0.1.0-alpha.4` or later.
CVE-2026-28961 Vulnerability in apple (CVE-2026-28961)
vulnerability in apple (CVE-2026-28961). Confidential information can be exposed externally.
CVE-2026-42367 Vulnerability in c (CVE-2026-42367)
vulnerability in c (CVE-2026-42367). Confidential information can be exposed externally.
CVE-2026-21670 A vulnerability allowing a low-privileged user to extract saved SSH credentials.
A vulnerability allowing a low-privileged user to extract saved SSH credentials.
CVE-2026-30796 Vulnerability in rustdesk (CVE-2026-30796)
vulnerability in rustdesk (CVE-2026-30796). Confidential information can be exposed externally.
CVE-2021-22681 KEV [KEV] Vulnerability in Rockwell multiple-products (CVE-2021-22681)
vulnerability in Rockwell multiple-products (CVE-2021-22681). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-64898 Vulnerability in adobe (CVE-2025-64898)
vulnerability in adobe (CVE-2025-64898). Risk of unauthorized operations or information disclosure.
CVE-2023-27126 Vulnerability in tp-link (CVE-2023-27126)
vulnerability in tp-link (CVE-2023-27126). Confidential information can be exposed externally.
CVE-2022-47880 Vulnerability in jedox (CVE-2022-47880)
vulnerability in jedox (CVE-2022-47880). Confidential information can be exposed externally.
CVE-2021-30116 KEV [KEV] Vulnerability in Kaseya virtual-systemserver-administrator-vsa (CVE-2021-30116)
vulnerability in Kaseya virtual-systemserver-administrator-vsa (CVE-2021-30116). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-9248 KEV [KEV] Vulnerability in Progress aspnet-ajax-and-sitefinity (CVE-2017-9248)
vulnerability in Progress aspnet-ajax-and-sitefinity (CVE-2017-9248). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-29583 KEV [KEV] Vulnerability in Zyxel multiple-products (CVE-2020-29583)
vulnerability in Zyxel multiple-products (CVE-2020-29583). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-29043 Vulnerability in liferay (CVE-2021-29043)
vulnerability in liferay (CVE-2021-29043). Confidential information can be exposed externally.
CVE-2020-15791 Vulnerability in siemens (CVE-2020-15791)
vulnerability in siemens (CVE-2020-15791). Confidential information can be exposed externally.
CVE-2020-10727 Vulnerability in org.apache.activemq:artemis-commons (CVE-2020-10727)
vulnerability in org.apache.activemq:artemis-commons (CVE-2020-10727). Confidential information can be exposed externally. Exploitable via ``resetUsers``. Mitigation: upgrade to `2.13.0` or later.
CVE-2017-3192 Vulnerability in d-link (CVE-2017-3192)
vulnerability in d-link (CVE-2017-3192). Successful exploitation can lead to full system takeover.
CVE-2017-1000245 Vulnerability in jenkins (CVE-2017-1000245)
vulnerability in jenkins (CVE-2017-1000245). Successful exploitation can lead to full system takeover.
CVE-2017-5700 Vulnerability in intel (CVE-2017-5700)
vulnerability in intel (CVE-2017-5700). Successful exploitation can lead to full system takeover.
CVE-2017-1201 Vulnerability in ibm (CVE-2017-1201)
vulnerability in ibm (CVE-2017-1201). Successful exploitation can lead to full system takeover.
CVE-2017-1378 Vulnerability in ibm (CVE-2017-1378)
vulnerability in ibm (CVE-2017-1378). Successful exploitation can lead to full system takeover.
CVE-2017-1362 Vulnerability in ibm (CVE-2017-1362)
vulnerability in ibm (CVE-2017-1362). Successful exploitation can lead to full system takeover.
CVE-2017-4923 Information Disclosure in vmware (CVE-2017-4923)
vulnerability in vmware (CVE-2017-4923). Successful exploitation can lead to full system takeover.
CVE-2017-1337 Vulnerability in ibm (CVE-2017-1337)
vulnerability in ibm (CVE-2017-1337). Successful exploitation can lead to full system takeover.
CVE-2017-6709 Information Disclosure in cisco (CVE-2017-6709)
vulnerability in cisco (CVE-2017-6709). Successful exploitation can lead to full system takeover.
CVE-2017-1207 Vulnerability in ibm (CVE-2017-1207)
vulnerability in ibm (CVE-2017-1207). Confidential information can be exposed externally.
CVE-2017-6046 Vulnerability in sierra-wireless (CVE-2017-6046)
vulnerability in sierra-wireless (CVE-2017-6046). Confidential information can be exposed externally.
CVE-2017-6028 Vulnerability in schneider-electric (CVE-2017-6028)
vulnerability in schneider-electric (CVE-2017-6028). Successful exploitation can lead to full system takeover.
CVE-2017-6694 Vulnerability in cisco (CVE-2017-6694)
vulnerability in cisco (CVE-2017-6694). Confidential information can be exposed externally.
CVE-2017-8371 Vulnerability in schneider-electric (CVE-2017-8371)
vulnerability in schneider-electric (CVE-2017-8371). Confidential information can be exposed externally.
CVE-2015-5013 Vulnerability in ibm (CVE-2015-5013)
vulnerability in ibm (CVE-2015-5013). Confidential information can be exposed externally.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →