CWE-200

High likelihood

Exposure of Sensitive Information to an Unauthorized Actor

Parent: CWE-668 - Exposure of Resource to Wrong Sphere

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

10,213 vulnerabilities with CWE-200
CVE-2008-5688
MediaWiki <1.13.3 - Info Disclosure
CVE-2008-5683
Opera < 9.63 - Exposure of Sensitive Information
CVE-2008-5507
Mozilla Firefox <3.0.5 & 2.0.0.19 - CSRF
CVE-2008-5423
Sun Ray Server 3.x-4.0 & Windows Connector 1.1-2.0 - LDAP Password Exposure
CVE-2008-5420
EMC Control Center <6.1 - Info Disclosure
CVE-2008-3010
Windows Media Player - NTLM Credential Exposure via ISATAP Address Zone Misassociation
CVE-2008-5413
IBM WebSphere Application Server <7.0.0.1 - Info Disclosure
CVE-2008-5350
Java Runtime Environment - Info Disclosure
CVE-2008-5346
Java Runtime Environment <5.0 Update 16 - Memory Corruption
CVE-2008-5342
Java Web Start/JDK/JRE - Info Disclosure
CVE-2008-5341
Java Web Start/JDK/JRE <6.10/<5.16 - Info Disclosure
CVE-2008-5322
Wysi Wiki Wyg 1.0 - Info Disclosure
CVE-2008-4314
Samba 3.0.29-3.2.4 - Exposure of Sensitive Information via Crafted Trans Requests
CVE-2008-2432
Novell iPrint < 5.04 - Exposure of Sensitive Information via GetFileList Method
CVE-2008-4230
iPhone OS 1.0-2.1 - Unauthenticated Exposure of Sensitive Information via Emergency-Call Screen
CVE-2008-5161 LOW
SSH Version Scanner
CVSS 3.7
CVE-2008-5112
Microsoft Windows 2000 SP4 and Server 2003 SP1/SP2 - User Enumeration via LDAP Bind Requests
CVE-2008-5107
Citrix Presentation Server 4.5 and Desktop Server 1.0 - Sensitive Information Exposure via MSI Log Files
CVE-2008-5099
Sun Logical Domain Manager 1.0-1.0.3 - Unauthorized Exposure of OBP Security Password via 'ldm ls -l' Command
CVE-2008-4216
Apple Safari < 3.2 - Exposure of Sensitive Information via Plug-in Local URL Access
CVE-2008-3644
Apple Safari <3.2 - Info Disclosure
CVE-2008-5096
TYPO3 File List Extension < 0.2.1 - Exposure of Sensitive Information
CVE-2008-5076
htop 0.7 - Exposure of Sensitive Information via Non-Printable Process Name Characters
CVE-2008-5012
Firefox < 2.0.0.18 - Same-Origin Policy Bypass via Canvas HTTP Redirect
CVE-2008-4033
Microsoft XML Core Services 3.0-6.0 - Info Disclosure
Details
Vulnerabilities 10,213
Exploit Likelihood High