CWE-200

High likelihood

Exposure of Sensitive Information to an Unauthorized Actor

Parent: CWE-668 - Exposure of Resource to Wrong Sphere

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

10,161 vulnerabilities with CWE-200
CVE-2018-15432 MEDIUM
Cisco Prime Infrastructure - Authenticated Exposure of Sensitive Information via GET Request
CVSS 4.3
CVE-2018-15407 MEDIUM
Cisco HyperFlex HX Data Platform - Authenticated Sensitive Information Exposure via Residual Installation Files
CVSS 5.5
CVE-2018-0425 CRITICAL
Cisco RV110W RV130W RV215W - Unauthenticated Sensitive Information Disclosure via Web Management Interface
CVSS 9.8
CVE-2018-1723 MEDIUM
IBM Spectrum Scale 4.1.0.0-4.1.1.20, 4.2.0.0-4.2.3.10, 5.0.0-5.0.1.2 - Authenticated Arbitrary File Read
CVSS 6.2
CVE-2018-17891 LOW
Carestream Vue RIS <11.2 - Info Disclosure
CVSS 3.7
CVE-2018-13258 MEDIUM
MediaWiki 1.31.0 - Unauthenticated Exposure of Sensitive Information via Missing .htaccess Files
CVSS 5.3
CVE-2018-1670 LOW
IBM Financial Transaction Manager - Info Disclosure
CVSS 3.1
CVE-2018-16051 MEDIUM
GitLab 8.10.0-11.0.5, 11.1.0-11.1.4, 11.2.0-11.2.1 - Exposure of Sensitive Information via Orphaned Upload Files
CVSS 6.5
CVE-2018-14822 CRITICAL
Entes EMG12 <2.57 - Info Disclosure
CVSS 9.8
CVE-2018-6262 LOW
NVIDIA GeForce Experience < 3.15 - Sensitive Information Exposure via GameStream
CVSS 2.5
CVE-2018-17216 MEDIUM
PTC ThingWorx Platform <8.2 - Info Disclosure
CVSS 6.5
CVE-2018-17780 MEDIUM
Telegram Desktop <1.3.14 & Telegram 3.3.0.0 WP8.1 - Info Disclosure
CVSS 6.5
CVE-2018-17781 HIGH
Foxit PhantomPDF <9.3 - Info Disclosure
CVSS 7.5
CVE-2018-17155 MEDIUM
FreeBSD <11.2-STABLE - Info Disclosure
CVSS 5.5
CVE-2018-16712 MEDIUM
IObit Advanced SystemCare <1.2.0.5 - Memory Corruption
CVSS 6.5
CVE-2018-16969 MEDIUM
Citrix ShareFile StorageZones Controller <5.4.2 - Info Disclosure
CVSS 4.3
CVE-2018-17555 HIGH
ARRIS TG2492LG-NA - Info Disclosure
CVSS 7.5
CVE-2018-14803 MEDIUM
Philips e-Alert Unit <R2.1 - Info Disclosure
CVSS 5.3
CVE-2018-16672 MEDIUM
CIRCONTROL CirCarLife <4.3 - Info Disclosure
CVSS 6.5
CVE-2018-7907 MEDIUM
Huawei Multiple Models - Exposure of Sensitive Information to an Unauthorized Actor
CVSS 5.5
CVE-2018-6053 LOW
Google Chrome <64.0.3282.119 - Info Disclosure
CVSS 3.3
CVE-2018-6052 MEDIUM
Google Chrome <64.0.3282.119 - Info Disclosure
CVSS 4.3
CVE-2018-6045 MEDIUM
Google Chrome <64.0.3282.119 - Info Disclosure
CVSS 6.5
CVE-2018-6037 MEDIUM
Google Chrome <64.0.3282.119 - Info Disclosure
CVSS 6.5
CVE-2018-6035 HIGH
Google Chrome <64.0.3282.119 - Info Disclosure
CVSS 8.8
Details
Vulnerabilities 10,161
Exploit Likelihood High