CWE-532
AllowedInsertion of Sensitive Information into Log File
Abstraction: Base · Status: Incomplete
The product writes sensitive information to a log file.
1742 vulnerabilities reference this CWE, most recent first.
GHSA-W6F6-8JP4-H3C2
Vulnerability from github – Published: 2024-07-02 21:32 – Updated: 2024-07-02 21:32Under certain circumstances unnecessary user details are provided within system logs
{
"affected": [],
"aliases": [
"CVE-2024-32757"
],
"database_specific": {
"cwe_ids": [
"CWE-532"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2024-07-02T14:15:12Z",
"severity": "MODERATE"
},
"details": "Under certain circumstances unnecessary user details are provided within system logs",
"id": "GHSA-w6f6-8jp4-h3c2",
"modified": "2024-07-02T21:32:14Z",
"published": "2024-07-02T21:32:14Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32757"
},
{
"type": "WEB",
"url": "https://www.cisa.gov/news-events/ics-advisories/icsa-24-179-06"
},
{
"type": "WEB",
"url": "https://www.johnsoncontrols.com/trust-center/cybersecurity/security-advisories"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N",
"type": "CVSS_V3"
}
]
}
GHSA-W6FM-W97V-Q5V7
Vulnerability from github – Published: 2022-05-24 16:49 – Updated: 2023-02-03 21:30IBM Robotic Process Automation with Automation Anywhere 11 information disclosure could allow a local user to obtain e-mail contents from the client debug log file. IBM X-Force ID: 160759.
{
"affected": [],
"aliases": [
"CVE-2019-4296"
],
"database_specific": {
"cwe_ids": [
"CWE-532"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2019-07-01T15:15:00Z",
"severity": "LOW"
},
"details": "IBM Robotic Process Automation with Automation Anywhere 11 information disclosure could allow a local user to obtain e-mail contents from the client debug log file. IBM X-Force ID: 160759.",
"id": "GHSA-w6fm-w97v-q5v7",
"modified": "2023-02-03T21:30:27Z",
"published": "2022-05-24T16:49:10Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-4296"
},
{
"type": "WEB",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/160759"
},
{
"type": "WEB",
"url": "http://www.ibm.com/support/docview.wss?uid=ibm10884844"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"type": "CVSS_V3"
}
]
}
GHSA-W7F5-HW27-VF74
Vulnerability from github – Published: 2026-02-05 21:32 – Updated: 2026-02-05 21:32Tanium addressed an information disclosure vulnerability in Threat Response.
{
"affected": [],
"aliases": [
"CVE-2025-15332"
],
"database_specific": {
"cwe_ids": [
"CWE-532"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2026-02-05T19:15:54Z",
"severity": "MODERATE"
},
"details": "Tanium addressed an information disclosure vulnerability in Threat Response.",
"id": "GHSA-w7f5-hw27-vf74",
"modified": "2026-02-05T21:32:41Z",
"published": "2026-02-05T21:32:41Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-15332"
},
{
"type": "WEB",
"url": "https://security.tanium.com/TAN-2025-020"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
}
]
}
GHSA-W7FV-7J46-WWRV
Vulnerability from github – Published: 2022-05-24 16:51 – Updated: 2023-10-26 22:47Jenkins Amazon EC2 Plugin printed a log message that contained the beginning of the private key to the Jenkins system log.
The log message no longer includes the beginning of the private key.
{
"affected": [
{
"database_specific": {
"last_known_affected_version_range": "\u003c= 1.43"
},
"package": {
"ecosystem": "Maven",
"name": "org.jenkins-ci.plugins:ec2"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "1.44"
}
],
"type": "ECOSYSTEM"
}
]
}
],
"aliases": [
"CVE-2019-10364"
],
"database_specific": {
"cwe_ids": [
"CWE-532"
],
"github_reviewed": true,
"github_reviewed_at": "2023-10-26T22:47:33Z",
"nvd_published_at": "2019-07-31T13:15:00Z",
"severity": "MODERATE"
},
"details": "Jenkins Amazon EC2 Plugin printed a log message that contained the beginning of the private key to the Jenkins system log.\n\nThe log message no longer includes the beginning of the private key.",
"id": "GHSA-w7fv-7j46-wwrv",
"modified": "2023-10-26T22:47:33Z",
"published": "2022-05-24T16:51:51Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10364"
},
{
"type": "WEB",
"url": "https://github.com/jenkinsci/ec2-plugin/commit/78c3c49a227ac8eccb8b1be7193d5605363fe251"
},
{
"type": "WEB",
"url": "https://jenkins.io/security/advisory/2019-07-31/#SECURITY-673"
},
{
"type": "WEB",
"url": "http://www.openwall.com/lists/oss-security/2019/07/31/1"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
}
],
"summary": "Jenkins Amazon EC2 Plugin leaked beginning of private key in system log"
}
GHSA-W85C-JHM2-J3FM
Vulnerability from github – Published: 2022-05-24 16:51 – Updated: 2024-04-04 01:22In Octopus Deploy versions 3.0.19 to 2019.7.2, when a web request proxy is configured, an authenticated user (in certain limited circumstances) could trigger a deployment that writes the web request proxy password to the deployment log in cleartext. This is fixed in 2019.7.3. The fix was back-ported to LTS 2019.6.5 as well as LTS 2019.3.7.
{
"affected": [],
"aliases": [
"CVE-2019-14268"
],
"database_specific": {
"cwe_ids": [
"CWE-532"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2019-07-25T16:15:00Z",
"severity": "MODERATE"
},
"details": "In Octopus Deploy versions 3.0.19 to 2019.7.2, when a web request proxy is configured, an authenticated user (in certain limited circumstances) could trigger a deployment that writes the web request proxy password to the deployment log in cleartext. This is fixed in 2019.7.3. The fix was back-ported to LTS 2019.6.5 as well as LTS 2019.3.7.",
"id": "GHSA-w85c-jhm2-j3fm",
"modified": "2024-04-04T01:22:12Z",
"published": "2022-05-24T16:51:23Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14268"
},
{
"type": "WEB",
"url": "https://github.com/OctopusDeploy/Issues/issues/5739"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
}
]
}
GHSA-W8F8-J2JJ-6QWH
Vulnerability from github – Published: 2023-10-25 21:30 – Updated: 2023-11-02 18:30A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sonoma 14.1. An app may be able to read sensitive location information.
{
"affected": [],
"aliases": [
"CVE-2023-40405"
],
"database_specific": {
"cwe_ids": [
"CWE-532"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2023-10-25T19:15:09Z",
"severity": "LOW"
},
"details": "A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sonoma 14.1. An app may be able to read sensitive location information.",
"id": "GHSA-w8f8-j2jj-6qwh",
"modified": "2023-11-02T18:30:23Z",
"published": "2023-10-25T21:30:32Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-40405"
},
{
"type": "WEB",
"url": "https://support.apple.com/en-us/HT213984"
},
{
"type": "WEB",
"url": "https://support.apple.com/kb/HT213984"
},
{
"type": "WEB",
"url": "http://seclists.org/fulldisclosure/2023/Oct/24"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"type": "CVSS_V3"
}
]
}
GHSA-W8J7-WMGQ-54J8
Vulnerability from github – Published: 2022-05-24 19:09 – Updated: 2022-05-24 19:09Dell EMC NetWorker versions 18.x,19.x prior to 19.3.0.4 and 19.4.0.0 contain an Information Disclosure in Log Files vulnerability. A local low-privileged user of the Networker server could potentially exploit this vulnerability to read plain-text credentials from server log files.
{
"affected": [],
"aliases": [
"CVE-2021-21546"
],
"database_specific": {
"cwe_ids": [
"CWE-532"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2021-07-29T16:15:00Z",
"severity": "MODERATE"
},
"details": "Dell EMC NetWorker versions 18.x,19.x prior to 19.3.0.4 and 19.4.0.0 contain an Information Disclosure in Log Files vulnerability. A local low-privileged user of the Networker server could potentially exploit this vulnerability to read plain-text credentials from server log files.",
"id": "GHSA-w8j7-wmgq-54j8",
"modified": "2022-05-24T19:09:18Z",
"published": "2022-05-24T19:09:18Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-21546"
},
{
"type": "WEB",
"url": "https://www.dell.com/support/kbdoc/en-us/000185470/dsa-2021-081-dell-emc-networker-security-update-for-a-clear-text-vulnerability"
}
],
"schema_version": "1.4.0",
"severity": []
}
GHSA-W9GV-5RR7-WR2J
Vulnerability from github – Published: 2022-05-24 16:47 – Updated: 2024-04-04 00:53Northern.tech CFEngine Enterprise 3.12.1 has Insecure Permissions.
{
"affected": [],
"aliases": [
"CVE-2019-9929"
],
"database_specific": {
"cwe_ids": [
"CWE-532"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2019-06-06T17:29:00Z",
"severity": "HIGH"
},
"details": "Northern.tech CFEngine Enterprise 3.12.1 has Insecure Permissions.",
"id": "GHSA-w9gv-5rr7-wr2j",
"modified": "2024-04-04T00:53:49Z",
"published": "2022-05-24T16:47:32Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9929"
},
{
"type": "WEB",
"url": "https://cfengine.com/company/blog-detail/cve-2019-9929-internal-authentication-secrets-leaked-in-logs"
},
{
"type": "WEB",
"url": "https://cfengine.com/product/latest-release"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
GHSA-WC34-GFXH-9W6X
Vulnerability from github – Published: 2022-05-13 01:33 – Updated: 2022-05-13 01:33The NetIQ Identity Manager driver log file, in versions prior to 4.7, provides details that could aid in system enumeration.
{
"affected": [],
"aliases": [
"CVE-2018-1350"
],
"database_specific": {
"cwe_ids": [
"CWE-532"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2018-03-26T19:29:00Z",
"severity": "MODERATE"
},
"details": "The NetIQ Identity Manager driver log file, in versions prior to 4.7, provides details that could aid in system enumeration.",
"id": "GHSA-wc34-gfxh-9w6x",
"modified": "2022-05-13T01:33:23Z",
"published": "2022-05-13T01:33:23Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1350"
},
{
"type": "WEB",
"url": "https://www.netiq.com/documentation/identity-manager-47/releasenotes_idm47/data/releasenotes_idm47.html"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/103532"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"type": "CVSS_V3"
}
]
}
GHSA-WCC8-VCVW-P9M3
Vulnerability from github – Published: 2026-07-02 12:30 – Updated: 2026-07-02 12:30A vulnerability was discovered on StormShield Network Security 4.3.0 to 4.3.41 (included), 4.8.0 to 4.8.15 (included) , 5.0.0 to 5.0.5 (included)
There is a possible leak of secret information if administration commands have been passed with the CLI command line tool.
Someone with SSH access to the firewall (if SSH multiuser mode is enabled) could possibly get the proxy CA passphrase or TPM password.
{
"affected": [],
"aliases": [
"CVE-2026-8482"
],
"database_specific": {
"cwe_ids": [
"CWE-532"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2026-07-02T10:16:28Z",
"severity": "MODERATE"
},
"details": "A vulnerability was discovered on StormShield Network Security 4.3.0 to 4.3.41 (included), 4.8.0 to 4.8.15 (included) , 5.0.0 to 5.0.5 (included)\n\nThere is a possible leak of secret information if administration commands have been passed with the CLI command line tool.\n\nSomeone with SSH access to the firewall (if SSH multiuser mode is enabled) could possibly get the proxy CA passphrase or TPM password.",
"id": "GHSA-wcc8-vcvw-p9m3",
"modified": "2026-07-02T12:30:59Z",
"published": "2026-07-02T12:30:59Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-8482"
},
{
"type": "WEB",
"url": "https://advisories.stormshield.eu/2025-007"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:A/AC:L/PR:H/UI:R/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
}
]
}
Mitigation
Consider seriously the sensitivity of the information written into log files. Do not write secrets into the log files.
Mitigation
Remove debug log files before deploying the application into production.
Mitigation
Protect log files against unauthorized read/write.
Mitigation
Adjust configurations appropriately when software is transitioned from a debug state to production.
CAPEC-215: Fuzzing for application mapping
An attacker sends random, malformed, or otherwise unexpected messages to a target application and observes the application's log or error messages returned. The attacker does not initially know how a target will respond to individual messages but by attempting a large number of message variants they may find a variant that trigger's desired behavior. In this attack, the purpose of the fuzzing is to observe the application's log and error messages, although fuzzing a target can also sometimes cause the target to enter an unstable state, causing a crash.