CWE-200

High likelihood

Exposure of Sensitive Information to an Unauthorized Actor

Parent: CWE-668 - Exposure of Resource to Wrong Sphere

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

10,172 vulnerabilities with CWE-200
CVE-2017-6284 MEDIUM
Google Android < 6.2 - Information Disclosure
CVSS 5.5
CVE-2017-6283 MEDIUM
NVIDIA Shield TV Firmware < 6.2 - Exposure of Sensitive Information via RSA Keyslot Permission Reset
CVSS 5.5
CVE-2017-6280 HIGH
Android NVIDIA Driver - Out-of-bounds Read
CVSS 7.5
CVE-2017-8165 MEDIUM
Huawei Mate 9 Firmware < MHA-AL00BC00B233 - Sensitive Information Exposure via Malicious Application
CVSS 5.5
CVE-2017-17140 MEDIUM
Huawei Enjoy 5s/Y6 Pro Firmware Info Exposure via Malicious App
CVSS 5.5
CVE-2017-17139 MEDIUM
Huawei Mate 9 <MHA-AL00B 8.0.0.334(C00) - Info Disclosure
CVSS 5.5
CVE-2017-7633 HIGH
QNAP Qfinder Pro <6.1.0.0317 - Info Disclosure
CVSS 7.5
CVE-2017-9280 MEDIUM
NetIQ Identity Manager <4.5.6.1 - Info Disclosure
CVSS 4.3
CVE-2017-1654 MEDIUM
IBM Spectrum Scale <4.2.3 - Info Disclosure
CVSS 4.0
CVE-2017-14461 MEDIUM
Dovecot - Out-of-bounds Read and Denial of Service via Crafted Email
CVSS 5.9
CVE-2017-6926 HIGH
Drupal 8.4.x <8.4.5 - Info Disclosure
CVSS 8.1
CVE-2017-5188 MEDIUM
Open Build Service <20170320 - Info Disclosure
CVSS 5.0
CVE-2017-16770 MEDIUM
Synology Surveillance Station <8.1.2-5469 - Info Disclosure
CVSS 6.5
CVE-2017-11635 HIGH
Wireless IP Camera 360 - Info Disclosure
CVSS 7.5
CVE-2017-1774 MEDIUM
IBM Security Guardium Big Data Intelligence 3.1 - Exposure of Sensitive Information
CVSS 5.3
CVE-2017-15696 HIGH
Apache Geode 1.0.0-1.3.0 & geode-core 1.0.0-1.4.0 - Sensitive Info Exposure via Config Service
CVSS 7.5
CVE-2017-15518 HIGH
NetApp OnCommand API Services < 2.1 & Service Level Manager < 1.0RC4 - Sensitive Info Exposure
CVSS 7.8
CVE-2017-16769 MEDIUM
Synology Photo Station <6.8.1-3458 - Info Disclosure
CVSS 5.3
CVE-2017-18192 HIGH
Photo,Video Locker-Calculator < 18.0 - Unauthenticated Exposure of Sensitive Information via Hardcoded PIN
CVSS 7.5
CVE-2017-8985 MEDIUM
HP XP Storage Hitachi Global Link Manager 6.3.0-00-8.5.2-00 - Authenticated Information Disclosure
CVSS 5.3
CVE-2017-8980 HIGH
HPE Intelligent Management Center PLAT 7.3 E0504P2 - Exposure of Sensitive Information
CVSS 7.5
CVE-2017-8978 MEDIUM
HPE IceWall <MFA 4.0 - Info Disclosure
CVSS 4.6
CVE-2017-8970 MEDIUM
HPE Matrix Operating Environment <7.6 LR1 - Info Disclosure
CVSS 5.3
CVE-2017-8952 HIGH
HPE SiteScope <11.3 - Info Disclosure
CVSS 7.5
CVE-2017-8951 HIGH
HPE SiteScope <11.2x-11.3x - Info Disclosure
CVSS 7.8
Details
Vulnerabilities 10,172
Exploit Likelihood High