CVE-2025-27244

MEDIUM Year: 2025
CVSS v3 Score
5.9
Medium
Weakness Type
CWE-201
View all →

Vulnerability Description

AssetView and AssetView CLOUD contain an issue with acquiring sensitive information from sent data to the developer. If exploited, sensitive information may be obtained by a remote unauthenticated attacker.

Related Vulnerabilities

CVE-2017-16026

MEDIUM
CVSS:5.9(Medium)

Request is an http client. If a request is made using ```multipart```, and the body type is a ```number```, then the specified number of non-zero memory is passed in the body. This affects Request >=2...

CWE-2012017

CVE-2025-26335

MEDIUM
CVSS:5.8(Medium)

Dell PowerProtect Cyber Recovery, versions prior to 19.18.0.2, contains an Insertion of Sensitive Information Into Sent Data vulnerability. A high privileged attacker with remote access could potentia...

CWE-2012025

CVE-2025-47775

MEDIUM
CVSS:6.2(Medium)

Bullfrog is a GithHb Action to block unauthorized outbound traffic in GitHub workflows. Prior to version 0.8.4, using tcp breaks blocking and allows DNS exfiltration. This can result in sandbox bypass...

CWE-2012025

CVE-2020-27784

MEDIUM
CVSS:5.5(Medium)

A vulnerability was found in the Linux kernel, where accessing a deallocated instance in printer_ioctl() printer_ioctl() tries to access of a printer_dev instance. However, use-after-free arises becau...

CWE-2012020

CVE-2021-1128

MEDIUM
CVSS:5.5(Medium)

A vulnerability in the CLI parser of Cisco IOS XR Software could allow an authenticated, local attacker to view more information than their privileges allow. The vulnerability is due to insufficient a...

CWE-2012021

CVE-2021-34771

MEDIUM
CVSS:5.5(Medium)

A vulnerability in the Cisco IOS XR Software CLI could allow an authenticated, local attacker to view more information than their privileges allow. This vulnerability is due to insufficient applicatio...

CWE-2012021