CWE-200

High likelihood

Exposure of Sensitive Information to an Unauthorized Actor

Parent: CWE-668 - Exposure of Resource to Wrong Sphere

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

10,178 vulnerabilities with CWE-200
CVE-2017-1143 MEDIUM
IBM Kenexa LCMS Premier on Cloud <10.0 - Info Disclosure
CVSS 5.3
CVE-2017-1142 MEDIUM
IBM Kenexa LCMS Premier on Cloud 9.x-10.0 - Info Disclosure
CVSS 6.5
CVE-2017-2643 MEDIUM
Moodle 3.2.x - Unauthenticated Exposure of Sensitive Information via Global Search
CVSS 5.3
CVE-2017-5227 HIGH
QNAP QTS < 4.2.4 - Unauthenticated Sensitive Information Exposure via uLinux.conf
CVSS 7.5
CVE-2017-6318 HIGH
Opensuse Leap - Information Disclosure
CVSS 7.5
CVE-2017-1155 MEDIUM
IBM Algorithmics One-Algo Risk App <5.1.0 - Privilege Escalation
CVSS 4.3
CVE-2017-3871 MEDIUM
Cisco Prime Optical <10.6.0.1 - Info Disclosure
CVSS 4.3
CVE-2017-0128 MEDIUM
Microsoft Windows Vista SP2, Server 2008 SP2/R2 SP1, Windows 7 SP1 Uniscribe Information Disclosure
CVSS 4.3
CVE-2017-0127 MEDIUM
Microsoft Windows Vista SP2, Server 2008 SP2/R2 SP1, and 7 SP1 Uniscribe Information Disclosure
CVSS 4.3
CVE-2017-0126 MEDIUM
Microsoft Windows Vista SP2/Server 2008 SP2/R2 SP1/7 SP1 Uniscribe Information Disclosure
CVSS 4.3
CVE-2017-0125 MEDIUM
Microsoft Windows Vista SP2, Server 2008 SP2/R2 SP1, and 7 SP1 - Uniscribe Information Disclosure via Crafted Website
CVSS 4.3
CVE-2017-0124 MEDIUM
Microsoft Windows Uniscribe - Information Disclosure via Crafted Website
CVSS 4.3
CVE-2017-0123 MEDIUM
Microsoft Windows Uniscribe - Information Disclosure via Crafted Website
CVSS 4.3
CVE-2017-0122 MEDIUM
Windows Uniscribe - Information Disclosure via Crafted Website
CVSS 4.3
CVE-2017-0121 MEDIUM
Microsoft Windows Uniscribe - Information Disclosure via Crafted Website
CVSS 4.3
CVE-2017-0120 MEDIUM
Microsoft Windows Vista SP2/Server 2008 SP2/R2 SP1/7 SP1 Uniscribe Information Disclosure
CVSS 4.3
CVE-2017-0119 MEDIUM
Microsoft Windows Vista SP2/Server 2008 SP2/R2 SP1/7 SP1 Uniscribe Information Disclosure
CVSS 4.3
CVE-2017-0118 MEDIUM
Microsoft Windows Uniscribe - Information Disclosure via Crafted Website
CVSS 4.3
CVE-2017-0117 MEDIUM
Microsoft Windows Vista/Server 2008/7 Uniscribe Information Disclosure via Crafted Website
CVSS 4.3
CVE-2017-0116 MEDIUM
Microsoft Windows Vista SP2, Server 2008 SP2/R2 SP1, and 7 SP1 - Uniscribe Information Disclosure via Crafted Website
CVSS 4.3
CVE-2017-0115 MEDIUM
Microsoft Windows Uniscribe - Information Disclosure via Crafted Website
CVSS 4.3
CVE-2017-0114 MEDIUM
Microsoft Windows Uniscribe - Information Disclosure via Crafted Website
CVSS 4.3
CVE-2017-0113 MEDIUM
Microsoft Windows Uniscribe - Information Disclosure via Crafted Website
CVSS 4.3
CVE-2017-0112 MEDIUM
Microsoft Windows Vista SP2/Server 2008 SP2/R2 SP1/7 SP1 Uniscribe Information Disclosure
CVSS 4.3
CVE-2017-0111 MEDIUM
Microsoft Windows Vista SP2, Server 2008 SP2/R2 SP1, Windows 7 SP1 Uniscribe Information Disclosure
CVSS 4.3
Details
Vulnerabilities 10,178
Exploit Likelihood High