VYPR
Get started

CWE-778

Insufficient Logging

BaseDraftLikelihood: Medium

Description

When a security-critical event occurs, the product either does not record the event or omits important details about the event when logging it.

Hierarchy (View 1000)

Parents

Children

none

CVEs mapped to this weakness (5)

CVESevRiskCVSSEPSSKEVPublishedDescription
CVE-2024-48967Cri0.6510.00.00Nov 14, 2024The ventilator and the Service PC lack sufficient audit logging capabilities to allow for detection of malicious activity and subsequent forensic examination. An attacker with access to the ventilator and/or the Service PC could, without detection, make unauthorized changes to ventilator settings that result in unauthorized disclosure of information and/or have unintended impacts on device performance.
CVE-2025-52644Med0.385.80.00Mar 16, 2026HCL AION is affected by a vulnerability where certain user actions are not adequately audited or logged. The absence of proper auditing mechanisms may reduce traceability of user activities and could potentially impact monitoring, accountability, or incident investigation processes.
CVE-2025-53498Med0.345.30.00Jul 7, 2025Insufficient Logging vulnerability in Wikimedia Foundation Mediawiki - AbuseFilter Extension allows Data Leakage Attacks.This issue affects Mediawiki - AbuseFilter Extension: from 1.43.X before 1.43.2.
CVE-2024-10863Med0.330.00Nov 22, 2024: Insufficient Logging vulnerability in OpenText Secure Content Manager on Windows allows Audit Log Manipulation.This issue affects Secure Content Manager: from 10.1 before <24.4. End-users can potentially exploit the vulnerability to exclude audit trails from being recorded on the client side.
CVE-2026-32803Low0.213.30.00May 8, 2026Dell PowerScale OneFS versions 9.5.0.0 through 9.5.1.6, 9.6.0.0 through 9.7.1.13, 9.8.0.0 through 9.10.1.5 and 9.11.0.0 through 9.12.0.1 contains an Insufficient Logging vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Information tampering.