CWE-200
High likelihoodExposure of Sensitive Information to an Unauthorized Actor
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
10,153 vulnerabilities with CWE-200
CVE-2019-1645
MEDIUM
Cisco Connected Mobile Experiences - Unauthenticated Exposure of Sensitive Information via API GET Requests
CVSS 4.3
CVE-2019-0647
MEDIUM
Team Foundation Server - Info Disclosure
CVSS 6.5
CVE-2019-3811
MEDIUM
sssd < 2.1 - Unintended Home Directory Path Disclosure
CVSS 5.2
CVE-2019-3803
MEDIUM
Concourse < 4.2.2 - Exposure of Sensitive Information via URL in Login Flow
CVSS 4.5
CVE-2019-5884
MEDIUM
elFinder < 2.1.45 - Information Exposure via PHP curl Extension
CVSS 5.9
CVE-2019-0545
HIGH
.NET Framework and .NET Core - Information Disclosure via CORS Bypass
CVSS 7.5
CVE-2018-9384
MEDIUM
Android - Local Information Disclosure via KASLR Bypass
CVSS 4.4
CVE-2018-9379
MEDIUM
Android - Local Information Disclosure via MiniThumbFile Thumbnail Handling
CVSS 5.5
CVE-2018-8863
MEDIUM
Philips EncoreAnywhere - Info Disclosure
CVSS 5.9
CVE-2018-25081
HIGH
Bitwarden < 2023.2.1 - Exposure of Sensitive Information via Cross-Domain IFRAME Auto-Fill
CVSS 7.5
CVE-2018-25022
LOW
toxcore < 0.2.2 - Unauthenticated IP Address Exposure via Onion Routing
CVSS 3.1
CVE-2018-19947
MEDIUM
QNAP Helpdesk < 3.0.3 - Sensitive Information Exposure
CVSS 4.3
CVE-2018-21260
LOW
Mattermost Server 4.6.0-4.6.2 - Exposure of Sensitive Information via WebSocket Events
CVSS 2.7
CVE-2018-21242
CRITICAL
Foxit PhantomPDF < 8.3.6 - Remote Code Execution via GoToE or GoToR Action
CVSS 9.8
CVE-2018-21168
HIGH
NETGEAR Multiple Routers - Unauthenticated Sensitive Information Disclosure
CVSS 7.5
CVE-2018-21139
HIGH
NETGEAR Multiple Routers - Unauthenticated Sensitive Information Exposure
CVSS 7.5
CVE-2018-21136
MEDIUM
NETGEAR D3600 and D6000 < 1.0.0.76 - Unauthorized Sensitive Information Exposure
CVSS 4.6
CVE-2018-21129
MEDIUM
NETGEAR WAC505 and WAC510 Firmware < 5.0.0.17 - Exposure of Sensitive Information
CVSS 6.5
CVE-2018-21143
MEDIUM
NETGEAR GS810EMX < 1.0.0.5 - Unauthorized Sensitive Information Exposure
CVSS 6.5
CVE-2018-21034
MEDIUM
Argo CD < 1.5.0-rc1 - Authenticated Exposure of Sensitive Information via API
CVSS 6.5
CVE-2018-21077
LOW
Android M(6.0) N(7.x) O(8.x) - Unauthorized Clipboard Content Exposure via Emergency Call Keyboard
CVSS 2.4
CVE-2018-21076
MEDIUM
Samsung Android N(7.x) - KASLR Offset Exposure via Modified Trustlet
CVSS 5.5
CVE-2018-21074
LOW
Samsung Android M(6.x) - Unauthorized Information Disclosure via Trustlet Debug Log
CVSS 3.3
CVE-2018-21073
LOW
Samsung Android N(7.x) and O(8.0) - Unauthorized Clipboard Content Access via Edge Panel
CVSS 2.4
CVE-2018-21071
HIGH
Android - Unprotected Intent Exposure of Sensitive Information
CVSS 7.3
Details
Vulnerabilities
10,153
Exploit Likelihood
High