CWE-200

High likelihood

Exposure of Sensitive Information to an Unauthorized Actor

Parent: CWE-668 - Exposure of Resource to Wrong Sphere

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

10,178 vulnerabilities with CWE-200
CVE-2017-0536 MEDIUM
Linux Kernel - Information Disclosure in Synaptics Touchscreen Driver
CVSS 4.7
CVE-2017-0535 MEDIUM
Linux Kernel and Android Kernel 3.10 - Information Disclosure via HTC Sound Codec Driver
CVSS 4.7
CVE-2017-0534 MEDIUM
Linux Kernel >= 3.18 - Information Disclosure in Qualcomm Video Driver
CVSS 4.7
CVE-2017-0533 MEDIUM
Linux Kernel >= 3.18 - Information Disclosure in Qualcomm Video Driver
CVSS 4.7
CVE-2017-0532 MEDIUM
Android < 7.1.1 - Information Disclosure in MediaTek Video Codec Driver
CVSS 4.7
CVE-2017-0531 MEDIUM
Linux Kernel 3.10-3.18 - Information Disclosure via Qualcomm Wi-Fi Driver
CVSS 4.7
CVE-2017-0529 MEDIUM
Android < 7.1.1 - Information Disclosure in MediaTek Driver
CVSS 5.5
CVE-2017-0495 MEDIUM
Android 6.0 6.0.1 7.0 7.1.1 - Information Disclosure in Mediaserver
CVSS 5.5
CVE-2017-0494 MEDIUM
Android 6.0 6.0.1 7.0 7.1.1 - Information Disclosure via AOSP Messaging
CVSS 5.5
CVE-2017-0461 MEDIUM
Linux Kernel - Information Disclosure in Qualcomm Wi-Fi Driver
CVSS 4.7
CVE-2017-0459 MEDIUM
Linux Kernel >= 3.18 - Information Disclosure in Qualcomm Wi-Fi Driver
CVSS 4.7
CVE-2017-0455 HIGH
Linux Kernel >=3.18 - Information Disclosure in Qualcomm Bootloader
CVSS 7.8
CVE-2017-0452 MEDIUM
Linux Kernel and Android Kernel 3.10 - Information Disclosure in Qualcomm Camera Driver
CVSS 4.7
CVE-2017-0336 MEDIUM
NVIDIA GPU Driver for Android Kernel-3.18 - Information Disclosure
CVSS 5.5
CVE-2017-0334 MEDIUM
NVIDIA GPU Driver for Android Kernel-3.18 - Information Disclosure via Local Application
CVSS 5.5
CVE-2017-1124 LOW
IBM Maximo Asset Mgmt <7.6 - Info Disclosure
CVSS 2.9
CVE-2017-5866 MEDIUM
Owncloud < 8.1.10 - Information Disclosure
CVSS 4.3
CVE-2017-5865 LOW
ownCloud < 8.1.11, 8.2.x < 8.2.9, 9.0.x < 9.0.7, 9.1.x < 9.1.3 - User Enumeration via Password Reset Error Messages
CVSS 3.7
CVE-2017-5995 HIGH
NetApp ONTAP Select Deploy Administration Utility 2.0-2.2.1 - Exposure of Sensitive Information
CVSS 7.5
CVE-2017-2685 HIGH
Siemens Sinumerik Integrate Access My... - Information Disclosure
CVSS 7.4
CVE-2017-5927 HIGH
Allwinner A64 - Exposure of Sensitive Information via MMU Page Table Walk Side-Channel
CVSS 7.5
CVE-2017-5926 HIGH
Allwinner A64 - Information Disclosure
CVSS 7.5
CVE-2017-5925 HIGH
Allwinner A64 - Information Disclosure
CVSS 7.5
CVE-2017-6076 MEDIUM
wolfssl < 3.10.2 - Exposure of Sensitive Information via RSA Key Cache Side Channel
CVSS 5.5
CVE-2017-6206 HIGH
D-Link Websmart DGS-1510 Series Firmware < 1.31.b001 - Unauthenticated Information Disclosure
CVSS 7.5
Details
Vulnerabilities 10,178
Exploit Likelihood High