CWE-200

High likelihood

Exposure of Sensitive Information to an Unauthorized Actor

Parent: CWE-668 - Exposure of Resource to Wrong Sphere

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

10,178 vulnerabilities with CWE-200
CVE-2016-10005 HIGH
SAP Solution Manager 7.1-7.31 - Information Disclosure via Webdynpro Dispatcher
CVSS 7.5
CVE-2016-9159 MEDIUM
SIMATIC S7-300, S7-400, S7-410 - Info Disclosure
CVSS 5.9
CVE-2016-8820 MEDIUM
NVIDIA Windows GPU Display Driver - Info Disclosure
CVSS 6.1
CVE-2016-7889 HIGH
Adobe Digital Editions <= 4.5.2 - Information Disclosure via XML Parsing
CVSS 7.5
CVE-2016-7888 MEDIUM
Adobe Digital Editions <= 4.5.2 - Memory Address Leak
CVSS 5.3
CVE-2016-7887 HIGH
Adobe ColdFusion Builder <= 2016 update 2 and <= 3.0.3 - Exposure of Sensitive Information
CVSS 7.5
CVE-2016-6852 MEDIUM
Open-Xchange AppSuite < 7.8.2 - Unauthenticated Local File Path Disclosure via RSS Reader
CVSS 4.3
CVE-2016-4047 MEDIUM
Open-Xchange OX App Suite <7.8.1-rev8 - Info Disclosure
CVSS 4.3
CVE-2016-4027 LOW
Open-Xchange OX App Suite <7.8.1-rev10 - Info Disclosure
CVSS 3.5
CVE-2016-9201 HIGH
Cisco IOS and IOS XE - Unauthenticated Firewall Bypass via Zone-Based Firewall
CVSS 7.5
CVE-2016-6471 MEDIUM
Cisco Firepower Management Center - Info Disclosure
CVSS 6.5
CVE-2016-6464 HIGH
Cisco Unified Communications Manager IM and Presence Service - Info...
CVSS 7.5
CVE-2016-6313 MEDIUM
Libgcrypt <1.5.6, 1.6.x <1.6.6, 1.7.x <1.7.3 - Info Disclosure
CVSS 5.3
CVE-2016-6722 MEDIUM
Android 4.0-4.4.3 - Information Disclosure in libstagefright
CVSS 5.5
CVE-2016-6720 MEDIUM
Android 4.0-4.4.3 - Information Disclosure in libstagefright
CVSS 5.5
CVE-2016-9855 MEDIUM
phpMyAdmin 4.6.x < 4.6.5 and 4.4.x < 4.4.15.9 - Sensitive Information Exposure via Export Timeout Error
CVSS 5.3
CVE-2016-9854 MEDIUM
phpMyAdmin 4.6.x < 4.6.5 and 4.4.x < 4.4.15.9 - Information Exposure via Error Message
CVSS 5.3
CVE-2016-9853 MEDIUM
phpMyAdmin 4.6.x < 4.6.5 and 4.4.x < 4.4.15.9 - Sensitive Information Exposure via Error Message
CVSS 5.3
CVE-2016-9852 MEDIUM
phpMyAdmin 4.6.x < 4.6.5 and 4.4.x < 4.4.15.9 - Path Disclosure via Export Timeout Error
CVSS 5.3
CVE-2016-9848 MEDIUM
phpMyAdmin < 4.6.5, < 4.4.15.9, < 4.0.10.18 - Unauthenticated Sensitive Information Exposure via phpinfo.php
CVSS 5.3
CVE-2016-6627 MEDIUM
phpMyAdmin <4.6.4, <4.4.15.8, <4.0.10.17 - Info Disclosure
CVSS 5.3
CVE-2016-6625 MEDIUM
phpMyAdmin <4.6.4, <4.4.15.8, <4.0.10.17 - Info Disclosure
CVSS 4.3
CVE-2016-6613 MEDIUM
phpMyAdmin <4.6.4, <4.4.15.8, <4.0.10.17 - Info Disclosure
CVSS 5.3
CVE-2016-6612 MEDIUM
phpMyAdmin <4.6.4, <4.4.15.8, <4.0.10.17 - Info Disclosure
CVSS 6.5
CVE-2016-6610 MEDIUM
phpMyAdmin <4.6.4, <4.4.15.8, <4.0.10.17 - Info Disclosure
CVSS 4.3
Details
Vulnerabilities 10,178
Exploit Likelihood High