Reddit NetSec

CVE Database V5

AlienVault OTX General

Reddit InfoSec News

Exploit-DB RSS Feed

CIRCL OSINT Feed

ThreatFox MISP Feed

AlienVault OTX Vulnerabilities

AlienVault OTX Malware

An information disclosure vulnerability in the SD-WAN feature of Palo Alto Networks PAN-OS® software enables an unauthorized user to view unencrypted data sent from the firewall through the SD-WAN interface. This requires the user to be able to intercept packets sent from the firewall.

Cloud NGFW and Prisma® Access are not affected by this vulnerability.

CVE-2025-4229 is an information disclosure vulnerability identified in the SD-WAN feature of Palo Alto Networks PAN-OS software, specifically impacting the Cloud NGFW product. The vulnerability allows an unauthorized attacker to intercept and view unencrypted data transmitted from the firewall via the SD-WAN interface. Exploitation requires the attacker to have the capability to intercept network packets sent from the affected firewall, which implies a need for network-level access or the ability to perform man-in-the-middle attacks on the SD-WAN traffic. Notably, this vulnerability does not affect Palo Alto Networks' Cloud NGFW and Prisma Access cloud services, limiting the scope to on-premises or hybrid deployments of PAN-OS with SD-WAN enabled. The CVSS 4.0 base score is 6.0, indicating a medium severity level, with the vector highlighting network attack vector (AV:N), low attack complexity (AC:L), no privileges required (PR:N), and user interaction required (UI:P). The vulnerability impacts confidentiality (data exposure) but does not affect integrity or availability. There are no known exploits in the wild at the time of publication, and no patches or mitigations have been explicitly linked yet. The CWE classification is CWE-497, which relates to exposure of sensitive system information to unauthorized entities. This vulnerability underscores the risk of transmitting sensitive data in unencrypted form over SD-WAN interfaces, which can be intercepted by attackers with network access, potentially leading to leakage of sensitive operational or configuration data from the firewall environment.

Detailed information about CVE-2025-4229: CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere in Palo Alto Networks Cloud NGFW af

CVE-2025-4229: CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere in Palo Alto Networks Cloud NGFW - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-4229: CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere in Palo Alto Networks Cloud NGFW

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in elfsight elfsight Contact Form widget allows Retrieve Embedded Sensitive Data. This issue affects elfsight Contact Form widget: from n/a through 2.3.1.

CVE-2025-31045 is a high-severity vulnerability identified in the elfsight Contact Form widget, versions up to 2.3.1. This vulnerability is classified under CWE-497, which pertains to the exposure of sensitive system information to an unauthorized control sphere. Specifically, the flaw allows an attacker to retrieve embedded sensitive data from the widget without requiring any authentication or user interaction. The vulnerability is remotely exploitable over the network (AV:N) with low attack complexity (AC:L), and no privileges are required (PR:N). The scope remains unchanged (S:U), and the impact is primarily on confidentiality (C:H), with no impact on integrity (I:N) or availability (A:N). This means that an attacker can access sensitive information embedded within the widget, which could include configuration details, API keys, or other confidential data that should not be publicly accessible. The vulnerability does not require user interaction, making it easier to exploit. Although no known exploits are currently reported in the wild, the high CVSS score of 7.5 indicates a significant risk if left unpatched. The lack of available patches at the time of reporting further increases the urgency for mitigation. The elfsight Contact Form widget is commonly used by websites to facilitate user communication, and the exposure of sensitive data could lead to further attacks such as credential theft, unauthorized access, or targeted phishing campaigns.

Detailed information about CVE-2025-31045: CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere in elfsight elfsight Contact Form 

CVE-2025-31045: CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere in elfsight elfsight Contact Form widget - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-31045: CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere in elfsight elfsight Contact Form widget

In AMD Versal Adaptive SoC devices, the incorrect configuration of the SSS during runtime (post-boot) cryptographic operations could cause data to be incorrectly written to and read from invalid locations as well as returning incorrect cryptographic data.

CVE-2025-0036 is a vulnerability identified in the AMD Platform Loader and Manager (PLM) component, specifically affecting AMD Versal Adaptive SoC devices. The issue arises from an incorrect calculation related to the configuration of the Secure Storage System (SSS) during runtime cryptographic operations, which occur post-boot. This misconfiguration can lead to data being written to and read from invalid memory locations, resulting in the return of incorrect cryptographic data. The vulnerability is categorized under several CWE identifiers including CWE-682 (Incorrect Calculation), CWE-772 (Missing Release of Resource after Effective Lifetime), CWE-940 (Improper Use of Cryptographic Primitive), CWE-941 (Improper Control of Generation of Code), and CWE-497 (Exposure of Sensitive Information to an Unauthorized Actor), indicating a complex interplay of issues affecting cryptographic integrity and resource management. The CVSS v3.1 base score is 3.2, reflecting a low severity level. The attack vector is local (AV:L), requiring low attack complexity (AC:L) and low privileges (PR:L), but user interaction is required (UI:R). The scope is changed (S:C), meaning the vulnerability affects components beyond the initially vulnerable component. The impact on confidentiality is low, with no impact on integrity or availability. No known exploits are currently in the wild, and no patches have been linked yet, though affected versions are referenced in AMD advisory AMD-SB-8011. This vulnerability could potentially cause cryptographic operations to malfunction, leading to incorrect data handling and possibly exposing sensitive information or causing cryptographic failures in systems relying on the affected SoCs.

Detailed information about CVE-2025-0036: CWE-682 Incorrect Calculation in AMD Platform Loader and Manager (PLM) affecting AMD Platform Loader and Manager (PLM)

CVE-2025-0036: CWE-682 Incorrect Calculation in AMD Platform Loader and Manager (PLM) - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-0036: CWE-682 Incorrect Calculation in AMD Platform Loader and Manager (PLM)

Smart Parking Management System from Honding Technology has an Exposure of Sensitive Information vulnerability, allowing unauthenticated remote attackers to access a specific page and obtain plaintext administrator credentials.

CVE-2025-5893 is a critical vulnerability identified in version 1.0 of the Honding Technology Smart Parking Management System. The vulnerability is categorized under CWE-497 (Exposure of Sensitive System Information to an Unauthorized Control Sphere) and CWE-256 (Plaintext Storage of a Password). It allows unauthenticated remote attackers to access a specific page within the system and retrieve plaintext administrator credentials without any user interaction or authentication. The vulnerability has a CVSS 3.1 base score of 9.8, indicating a critical severity level. The attack vector is network-based (AV:N), with low attack complexity (AC:L), no privileges required (PR:N), and no user interaction needed (UI:N). The scope is unchanged (S:U), but the impact on confidentiality, integrity, and availability is high (C:H/I:H/A:H). This means that an attacker can fully compromise the system by obtaining administrator credentials, potentially leading to unauthorized control over the parking management infrastructure, manipulation of parking data, disruption of services, and exposure of sensitive user and operational information. The vulnerability stems from improper handling and storage of sensitive credentials, exposing them in plaintext on an accessible page, which is a significant security design flaw. No patches or mitigations have been officially released at the time of publication, and no known exploits are currently observed in the wild, though the ease of exploitation and critical impact make this a high-risk issue.

Detailed information about CVE-2025-5893: CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere in Honding Technology Smart Parking

CVE-2025-5893: CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere in Honding Technology Smart Parking Management System - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-5893: CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere in Honding Technology Smart Parking Management System

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in whassan KI Live Video Conferences allows Retrieve Embedded Sensitive Data. This issue affects KI Live Video Conferences: from n/a through 5.5.15.

CVE-2025-23969 is a medium-severity vulnerability classified under CWE-497, which pertains to the Exposure of Sensitive System Information to an Unauthorized Control Sphere. This vulnerability affects the whassan KI Live Video Conferences software, specifically versions up to 5.5.15. The flaw allows an unauthenticated attacker to remotely retrieve embedded sensitive data from the affected system without requiring any user interaction. According to the CVSS 3.1 vector (AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N), the attack can be performed over the network with low attack complexity, no privileges, and no user interaction needed. The impact is limited to confidentiality, with no effect on integrity or availability. No known exploits have been reported in the wild, and no patches have been published yet. The vulnerability likely arises from improper handling or exposure of sensitive system information within the live video conferencing platform, which could include configuration details, credentials, or other embedded secrets that should not be accessible to unauthorized parties. Given the nature of video conferencing platforms, such information disclosure could facilitate further attacks or espionage if leveraged by threat actors.

Detailed information about CVE-2025-23969: CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere in whassan KI Live Video Conferenc

CVE-2025-23969: CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere in whassan KI Live Video Conferences - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-23969: CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere in whassan KI Live Video Conferences

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in esigngenie Foxit eSign for WordPress allows Retrieve Embedded Sensitive Data. This issue affects Foxit eSign for WordPress: from n/a through 2.0.3.

CVE-2025-49419 is a medium severity vulnerability classified under CWE-497, which pertains to the exposure of sensitive system information to unauthorized control spheres. This vulnerability affects the Foxit eSign for WordPress plugin developed by esigngenie, specifically versions up to and including 2.0.3. The flaw allows an attacker with high privileges (PR:H) but no user interaction (UI:N) to remotely retrieve embedded sensitive data over the network (AV:N). The vulnerability does not require user interaction and can be exploited remotely, but it does require the attacker to have some level of authenticated access, which limits the attack surface to users who already have elevated permissions within the WordPress environment. The impact primarily affects confidentiality, as sensitive information embedded within the system can be disclosed, potentially leading to further exploitation or data leakage. Integrity is only slightly impacted, and availability is not affected. The CVSS vector indicates low attack complexity (AC:L), meaning that once the attacker has the required privileges, exploitation is straightforward. No known exploits are currently reported in the wild, and no patches have been linked yet, indicating that mitigation may require vendor updates or configuration changes. The vulnerability arises from improper handling or exposure of sensitive data within the plugin, which could include credentials, configuration details, or other confidential information embedded in the system or plugin files. Given that this plugin integrates electronic signature capabilities into WordPress, the exposed data could relate to document signing processes or user credentials, increasing the risk of unauthorized document access or manipulation if leveraged further by attackers.

Detailed information about CVE-2025-49419: CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere in esigngenie Foxit eSign for Word

CVE-2025-49419: CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere in esigngenie Foxit eSign for WordPress - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-49419: CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere in esigngenie Foxit eSign for WordPress

An application "com.pri.applock", which is pre-loaded on Kruger&Matz smartphones, allows a user to encrypt any application using user-provided PIN code or by using biometric data.
Exposed ”com.android.providers.settings.fingerprint.PriFpShareProvider“ content provider's public method query() allows any other malicious application, without any granted Android system permissions, to exfiltrate the PIN code.

Only version (version name: 13, version code: 33) was tested and confirmed to have this vulnerability. 
Application update was released in April 2025.

CVE-2024-13916 is a medium-severity vulnerability affecting the pre-installed Android application 'com.pri.applock' on Kruger&Matz smartphones, specifically confirmed in version 13 (version code 33). This app provides users with the ability to encrypt other applications using either a user-defined PIN code or biometric authentication. The vulnerability arises from an exposed content provider component named 'com.android.providers.settings.fingerprint.PriFpShareProvider' within the app. This content provider exposes a public method 'query()' that can be accessed by any malicious application installed on the device without requiring any Android system permissions. Exploiting this flaw allows an attacker to exfiltrate the PIN code used for app encryption, effectively bypassing the security mechanism intended to protect sensitive applications. The vulnerability is categorized under CWE-497, which pertains to the exposure of sensitive system information to an unauthorized control sphere. The CVSS 4.0 base score is 6.9, reflecting a medium severity level. The vector indicates that the attack requires local access (AV:L), has low attack complexity (AC:L), requires no privileges (PR:N), no user interaction (UI:N), but impacts confidentiality heavily (VC:H) with no impact on integrity or availability. There are no known exploits in the wild, and no patches or vendor-provided fixes have been announced yet. The vulnerability's impact is confined to devices running the affected app version, and exploitation requires installation of a malicious app on the same device, which could be achieved via social engineering or sideloading.

Detailed information about CVE-2024-13916: CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere in Kruger&Matz com.pri.applock aff

CVE-2024-13916: CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere in Kruger&Matz com.pri.applock - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2024-13916: CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere in Kruger&Matz com.pri.applock

An information disclosure vulnerability was reported in the Lenovo Tab M8 HD that could allow a local application to gather a non-resettable device identifier.

CVE-2023-5081 is an information disclosure vulnerability identified in the Lenovo Tab M8 HD tablet series. The vulnerability arises from the exposure of a non-resettable device identifier to local applications without proper authorization controls. Specifically, a local application with limited privileges (requiring only low-level privileges and no user interaction) can access this persistent device identifier, which is intended to be protected. This identifier is non-resettable, meaning it remains constant throughout the device's lifecycle and cannot be changed or cleared by the user. The vulnerability is classified under CWE-497, which pertains to the exposure of sensitive system information to unauthorized control spheres. The CVSS v3.1 base score is 3.3, indicating a low severity level, primarily because the attack vector is local (AV:L), requires low privileges (PR:L), and does not impact integrity or availability, only confidentiality to a limited extent (C:L). There is no known exploitation in the wild, and no patches have been publicly linked yet. The affected product is the Lenovo Tab M8 HD, with various versions impacted. The vulnerability does not require user interaction and does not allow remote exploitation, limiting its scope to local applications installed on the device. However, the exposure of a persistent device identifier can facilitate device tracking, profiling, or linking user activities across applications, potentially undermining user privacy and enabling targeted attacks or surveillance if combined with other vulnerabilities or malicious software components.

Detailed information about CVE-2023-5081: CWE-497: Exposure of Sensitive System Information to an Unauthorized Control Sphere in Lenovo Tablet affecting Lenovo 

CVE-2023-5081: CWE-497: Exposure of Sensitive System Information to an Unauthorized Control Sphere in Lenovo Tablet - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2023-5081: CWE-497: Exposure of Sensitive System Information to an Unauthorized Control Sphere in Lenovo Tablet

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in OpenText Advanced Authentication allows Information Elicitation. The vulnerability could reveal sensitive information while managing and configuring of the external services.

This issue affects Advanced Authentication versions before 6.5.

CVE-2025-2236 is a vulnerability identified in OpenText Advanced Authentication versions prior to 6.5, classified under CWE-497, which pertains to the exposure of sensitive system information to an unauthorized control sphere. This vulnerability allows an attacker to elicit sensitive information during the management and configuration of external services within the Advanced Authentication platform. The flaw arises from improper handling or insufficient access controls around sensitive configuration data, potentially revealing details that could aid further attacks or unauthorized access attempts. The vulnerability is characterized by a low CVSS 4.0 base score of 2.1, indicating limited impact and exploitability. It requires local access (AV:L) with low attack complexity (AC:L), no privileges (PR:N), and no user interaction (UI:N). The impact on confidentiality, integrity, and availability is low, with partial confidentiality, integrity, and availability impacts (VC:L, VI:L, VA:L). The scope is partial (S:P), meaning the vulnerability affects resources beyond the security scope of the vulnerable component but does not fully compromise the entire system. The vulnerability does not require authentication and has no known exploits in the wild as of the publication date (May 27, 2025). The issue primarily concerns information disclosure rather than direct code execution or system takeover, but the leaked information could facilitate subsequent attacks if combined with other vulnerabilities or threat vectors. Since OpenText Advanced Authentication is used to secure access to enterprise resources, exposure of configuration details could weaken the overall security posture of affected organizations.

Detailed information about CVE-2025-2236: CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere in OpenText Advanced Authentication

CVE-2025-2236: CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere in OpenText Advanced Authentication - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-2236: CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere in OpenText Advanced Authentication

Exposure of file path, file size or file existence vulnerabilities in ASPECT provide attackers access to file system information if session administrator credentials become compromised.
This issue affects ASPECT-Enterprise: through 3.08.03; NEXUS Series: through 3.08.03; MATRIX Series: through 3.08.03.

CVE-2025-30170 is a vulnerability identified in ABB's ASPECT-Enterprise, NEXUS Series, and MATRIX Series products up to version 3.08.03. The issue is classified under CWE-497, which pertains to the exposure of sensitive system information to unauthorized control spheres. Specifically, this vulnerability allows attackers who have compromised session administrator credentials to gain access to sensitive file system information such as file paths, file sizes, or the existence of files. This exposure can provide attackers with valuable reconnaissance data that may facilitate further exploitation or lateral movement within the affected environment. The vulnerability does not require user interaction but does require that the attacker has high-privilege access (session administrator credentials). The CVSS 4.0 base score is 5.9 (medium severity), reflecting the moderate impact on confidentiality and integrity, with no direct impact on availability. The attack vector is network-based with low attack complexity, and the vulnerability does not require user interaction. However, it requires privileges that are typically restricted to administrators, limiting the scope of exploitation to those who have already gained elevated access. No known exploits are currently reported in the wild, and no patches have been explicitly linked yet. The vulnerability affects critical industrial control and enterprise management systems used in operational technology environments, which are often integral to infrastructure and manufacturing processes.

Detailed information about CVE-2025-30170: CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere in ABB ASPECT-Enterprise affecting

CVE-2025-30170: CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere in ABB ASPECT-Enterprise - Live Threat Intelligence - Threat Radar | OffSeq.com

Title	Severity	Type	Source	Date

Threats Tagged 'cwe-497'

Filter Threats

Threats Tagged 'cwe-497'