CWE-200

High likelihood

Exposure of Sensitive Information to an Unauthorized Actor

Parent: CWE-668 - Exposure of Resource to Wrong Sphere

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

10,178 vulnerabilities with CWE-200
CVE-2017-8490 MEDIUM
Windows Kernel - Authenticated Information Disclosure via Specially Crafted Application
CVSS 5.0
CVE-2017-8489 MEDIUM
Windows Kernel - Authenticated Information Disclosure via Specially Crafted Application
CVSS 5.0
CVE-2017-8488 MEDIUM
Microsoft Windows - Authenticated Information Disclosure via Specially Crafted Application
CVSS 5.0
CVE-2017-8485 MEDIUM
Microsoft Windows - Authenticated Information Disclosure via Specially Crafted Application
CVSS 5.0
CVE-2017-8484 MEDIUM
Microsoft Windows - Authenticated Information Disclosure via Win32k Memory Initialization
CVSS 5.0
CVE-2017-8483 MEDIUM
Windows Kernel - Authenticated Information Disclosure via Specially Crafted Application
CVSS 5.0
CVE-2017-8482 MEDIUM
Windows Kernel - Authenticated Information Disclosure via Specially Crafted Application
CVSS 5.0
CVE-2017-8481 MEDIUM
Microsoft Windows - Authenticated Information Disclosure via Specially Crafted Application
CVSS 5.0
CVE-2017-8480 MEDIUM
Windows Kernel - Authenticated Information Disclosure via Specially Crafted Application
CVSS 5.0
CVE-2017-8479 MEDIUM
Microsoft Windows Kernel - Authenticated Information Disclosure via Specially Crafted Application
CVSS 5.0
CVE-2017-8478 MEDIUM
Microsoft Windows - Authenticated Information Disclosure via Specially Crafted Application
CVSS 5.0
CVE-2017-8477 MEDIUM
Microsoft Windows - Authenticated Information Disclosure via Win32k Memory Initialization
CVSS 5.0
CVE-2017-8476 MEDIUM
Windows Kernel - Authenticated Information Disclosure via Specially Crafted Application
CVSS 5.0
CVE-2017-8475 MEDIUM
Microsoft Windows - Authenticated Information Disclosure via Improper Memory Initialization
CVSS 5.0
CVE-2017-8474 MEDIUM
Windows Kernel - Authenticated Information Disclosure via Specially Crafted Application
CVSS 5.0
CVE-2017-8473 MEDIUM
Microsoft Windows - Authenticated Information Disclosure via Win32k Memory Initialization
CVSS 5.0
CVE-2017-8472 MEDIUM
Microsoft Windows 7 SP1, Server 2008 SP2/R2 SP1, Server 2012 - Win32k Memory Initialization Info Disclosure
CVSS 5.0
CVE-2017-8471 MEDIUM
Microsoft Windows - Information Disclosure via Improper Memory Initialization
CVSS 5.0
CVE-2017-8470 MEDIUM
Microsoft Windows - Authenticated Information Disclosure via Improper Memory Initialization
CVSS 5.0
CVE-2017-8469 MEDIUM
Microsoft Windows - Authenticated Information Disclosure via Specially Crafted Application
CVSS 5.5
CVE-2017-8462 MEDIUM
Microsoft Windows - Authenticated Information Disclosure via Specially Crafted Application
CVSS 5.0
CVE-2017-8460 HIGH
Windows PDF - Information Disclosure via Crafted PDF File
CVSS 7.3
CVE-2017-0300 MEDIUM
Windows Kernel - Authenticated Information Disclosure via Specially Crafted Application
CVSS 5.0
CVE-2017-0299 MEDIUM
Microsoft Windows - Authenticated Information Disclosure via Specially Crafted Application
CVSS 5.0
CVE-2017-0297 MEDIUM
Windows Kernel - Authenticated Information Disclosure via Specially Crafted Application
CVSS 5.0
Details
Vulnerabilities 10,178
Exploit Likelihood High