CWE-200

High likelihood

Exposure of Sensitive Information to an Unauthorized Actor

Parent: CWE-668 - Exposure of Resource to Wrong Sphere

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

10,186 vulnerabilities with CWE-200
CVE-2015-4991 MEDIUM
IBM SPSS Modeler 14.2-17.1 - Exposure of Sensitive Information in Memory Dumps
CVSS 4.0
CVE-2015-3197 MEDIUM
OpenSSL <1.0.1r-1.0.2f - Info Disclosure
CVSS 5.9
CVE-2015-2005 MEDIUM
IBM QRadar Security Information and Event Manager 7.1.x-7.2.x - Exposure of Sensitive Information via Unattended Session
CVSS 5.3
CVE-2015-7680 MEDIUM
Ipswitch MOVEit DMZ <8.2 - Info Disclosure
CVSS 5.3
CVE-2015-7677 MEDIUM
Ipswitch MOVEit DMZ <8.2 - Info Disclosure
CVSS 4.3
CVE-2015-7675 MEDIUM
Ipswitch MOVEit DMZ <8.2, MOVEit Mobile <1.2.2 - Auth Bypass
CVSS 6.5
CVE-2015-3251 MEDIUM
Apache CloudStack <4.5.2 - Info Disclosure
CVSS 4.9
CVE-2015-2012 MEDIUM
IBM WebSphere MQ 7.1 < 7.1.0.7, 7.5-7.5.0.5, 8.0 < 8.0.0.4 - Sensitive Information Exposure via SSL Keystore
CVSS 4.0
CVE-2015-8575 MEDIUM
Linux kernel <4.3.4 - Info Disclosure
CVSS 4.0
CVE-2015-7915 CRITICAL
Sauter EY-WS505F0x0 moduWeb Vision <1.6.0 - Info Disclosure
CVSS 9.8
CVE-2015-8792 MEDIUM
libmatroska < 1.4.4 - Heap Memory Information Disclosure via Crafted EBML Lacing
CVSS 5.3
CVE-2015-8791 MEDIUM
libebml < 1.3.3 - Exposure of Sensitive Information via Crafted EBML ID Length Value
CVSS 4.3
CVE-2015-8790 MEDIUM
libebml < 1.3.2 - Exposure of Sensitive Information via Crafted UTF-8 String
CVSS 4.3
CVE-2015-8618 HIGH
Go <1.5.3 - Info Disclosure
CVSS 7.5
CVE-2015-7488 MEDIUM
IBM Spectrum Scale <4.1.1.4-4.2.0.1 - Info Disclosure
CVSS 5.9
CVE-2015-7487 MEDIUM
IBM Maximo Asset Management <7.6.0.3 IFIX001 - Info Disclosure
CVSS 4.1
CVE-2015-7886 LOW
NetApp Data ONTAP <8.2.4P1 - Info Disclosure
CVSS 3.7
CVE-2015-7470 HIGH
IBM Jazz Reporting Service <5.0.2-6.0.0 - Info Disclosure
CVSS 7.5
CVE-2015-4958 LOW
IBM InfoSphere MDM Collaborative Edition Sensitive Data Exposure via Browser Cache
CVSS 3.3
CVE-2015-8749 MEDIUM
OpenStack Nova 12.0.0 - Exposure of Sensitive Information in Xen Backend StorageError Message
CVSS 5.9
CVE-2015-8280 HIGH
Web Viewer 1.0.0.193 - Info Disclosure
CVSS 7.5
CVE-2015-3943 MEDIUM
Advantech WebAccess <8.1 - Info Disclosure
CVSS 5.3
CVE-2015-7548 LOW
OpenStack Compute <2015.1.3 - Info Disclosure
CVSS 3.5
CVE-2015-8335 MEDIUM
Huawei VCN500 <V100R002C00SPC201 - Info Disclosure
CVSS 6.5
CVE-2015-7399 MEDIUM
IBM Integration Bus - Information Disclosure
CVSS 5.3
Details
Vulnerabilities 10,186
Exploit Likelihood High