CWE-200

High likelihood

Exposure of Sensitive Information to an Unauthorized Actor

Parent: CWE-668 - Exposure of Resource to Wrong Sphere

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

10,186 vulnerabilities with CWE-200
CVE-2015-8481 LOW
Atlassian JIRA Software/JIRA Core/JIRA Service Desk <7.0.3 - Info D...
CVSS 3.1
CVE-2015-8303 MEDIUM
Huawei DSM <V100R002C05SPC661 - Info Disclosure
CVSS 4.0
CVE-2015-7328 MEDIUM
Puppet Enterprise - Exposure of Sensitive Information via World-Readable CA Private Key
CVSS 4.7
CVE-2015-6862 HIGH
HPE UCMDB Browser - Exposure of Sensitive Information
CVSS 8.4
CVE-2015-6644 LOW
Android < 5.1.1 LMY49F and 6.0 < 2016-01-01 - Exposure of Sensitive Information via Bouncy Castle
CVSS 3.3
CVE-2015-6641 LOW
Android 6.0 - Unauthorized Contacts Information Exposure via Bluetooth Pairing
CVSS 3.1
CVE-2015-5310 MEDIUM
Android - Exposure of Sensitive Information via WNM Sleep Mode Response
CVSS 4.3
CVE-2015-6858 LOW
HP Insight Management < 7.4 - Exposure of Sensitive Information via RabbitMQ
CVSS 3.7
CVE-2015-8509 LOW
Bugzilla <4.2.16, <4.3.x, <4.4.11, <5.0.2 - Info Disclosure
CVSS 3.5
CVE-2015-4962 LOW
IBM Rational Rhapsody Design Manager 4.x-4.0.7, 5.x-5.0.2, 6.x < 6.0.1 - Authenticated Exposure of Sensitive Information
CVSS 3.5
CVE-2015-7452 MEDIUM
IBM Maximo Asset Management <7.5.0.9 FP9, <7.6.0.3 FP3 - Info Discl...
CVSS 4.3
CVE-2015-7438 MEDIUM
IBM Sterling B2B Integrator 5.2 - Info Disclosure
CVSS 4.7
CVE-2015-7437 MEDIUM
IBM Sterling B2B Integrator 5.2 - Info Disclosure
CVSS 5.5
CVE-2015-7429 HIGH
IBM Tivoli Storage Manager <7.1.4, Tivoli Storage FlashCopy Manager...
CVSS 8.5
CVE-2015-4996 MEDIUM
IBM Rational ClearQuest 7.1.x, 8.0.0.x-8.0.0.16, 8.0.1.x-8.0.1.9 - Unauthenticated Credential Exposure
CVSS 5.1
CVE-2015-4990 MEDIUM
IBM Tealeaf Customer Experience < 8.6 - Information Disclosure
CVSS 4.0
CVE-2015-4989 LOW
IBM Tealeaf Customer Experience < 8.6 - Information Disclosure
CVSS 3.7
CVE-2015-7456 MEDIUM
IBM Spectrum Scale <4.1.1.4, 4.2.0.0 - Info Disclosure
CVSS 6.5
CVE-2015-7445 MEDIUM
IBM Multi-Enterprise Integration Gateway <1.0.0.1 & B2B Advanced Co...
CVSS 4.3
CVE-2015-7421 LOW
IBM MQ M2000 <8.0.0.4 - Info Disclosure
CVSS 3.7
CVE-2015-7420 LOW
IBM MQ Appliance M2000 < 8.0.0.3 - Exposure of Sensitive Information via GSKit
CVSS 3.7
CVE-2015-7447 MEDIUM
IBM WebSphere Portal - Auth Bypass
CVSS 5.3
CVE-2015-2913 MEDIUM
OrientDB Server Community Edition <2.0.15 and 2.1.x <2.1.1 - Information Disclosure
CVSS 5.9
CVE-2015-2896 MEDIUM
Idera Uptime Infrastructure Monitor <7.6 - Info Disclosure
CVSS 5.3
CVE-2015-8703 MEDIUM
ZTE ZXHN H108N R1A and ZXV10 W300 - Authenticated Sensitive Information Exposure via Configuration File
CVSS 6.5
Details
Vulnerabilities 10,186
Exploit Likelihood High