CWE-200

High likelihood

Exposure of Sensitive Information to an Unauthorized Actor

Parent: CWE-668 - Exposure of Resource to Wrong Sphere

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

10,195 vulnerabilities with CWE-200
CVE-2013-0943
EMC NetWorker <8.1 - Info Disclosure
CVE-2013-5000
phpMyAdmin <3.5.8.2 - Info Disclosure
CVE-2013-4999
phpMyAdmin <4.0.4.2 - Info Disclosure
CVE-2013-4998
phpMyAdmin <3.5.8.2, <4.0.4.2 - Info Disclosure
CVE-2013-2243
Moodle <= 2.2.11, 2.3.x < 2.3.8, 2.4.x < 2.4.5, 2.5.x < 2.5.1 - Sensitive Answer Information Exposure
CVE-2013-4780
Siemens Enterprise OpenScape <2R0.32.0-7R1.7.0 - Info Disclosure
CVE-2013-4778
Siemens Enterprise OpenScape <2R0.32.0-7R1.7.0 - Info Disclosure
CVE-2013-3825
Oracle Agile Product Collaboration 9.3.1 - Sensitive Information Exposure via Attachments
CVE-2013-3823
Oracle Agile PLM Framework 9.3.1 - Authenticated Exposure of Sensitive Information
CVE-2013-3428
Cisco Secure Access Control System - Authenticated Sensitive Information Exposure via Error Message
CVE-2013-2879
Google Chrome < 28.0.1500.71 - Exposure of Sensitive Information via Trusted Renderer Process Mismanagement
CVE-2013-2202
WordPress < 3.5.2 - XML External Entity Injection via oEmbed Provider Response
CVE-2013-1615
Symantec Security Information Manager 4.7.x-4.8.x - Exposure of Sensitive Information via Web-GUI API Calls
CVE-2013-2164
Linux Kernel - Information Disclosure via Malfunctioning CD-ROM Drive
CVE-2013-3020
IBM Sterling B2B Integrator 5.1-5.2 & SGW 2.1-2.2 - Info Disclosure
CVE-2013-2987
IBM Sterling B2B Integrator 5.1-5.2 & SGW 2.1-2.2 - Info Disclosure
CVE-2013-2985
IBM Sterling B2B Integrator 5.1-5.2 and Sterling File Gateway 2.1-2.2 - Authenticated Information Disclosure
CVE-2013-0568
IBM Sterling B2B Integrator 5.1-5.2 & SGW 2.1-2.2 - Info Disclosure
CVE-2013-0567
IBM Sterling B2B Integrator 5.1-5.2 & SGW 2.1-2.2 - Info Disclosure
CVE-2013-0558
IBM Sterling B2B Integrator <5.3 - Info Disclosure
CVE-2013-0481
IBM Sterling B2B Integrator <5.3 - Info Disclosure
CVE-2013-0475
IBM Sterling B2B Integrator 5.1-5.2 & SGW 2.1-2.2 - Info Disclosure
CVE-2013-0463
IBM Sterling B2B Integrator 5.1-5.2 & SGW 2.1-2.2 - Info Disclosure
CVE-2013-2322
HP NonStop SQL/MX <= 3.2 - Authenticated Sensitive Information Exposure via SQL/MP Objects
CVE-2013-3398
Cisco Prime Central for Hosted Collaboration Solution - Directory and File Enumeration via Pathname Existence Check
Details
Vulnerabilities 10,195
Exploit Likelihood High