CWE-200

High likelihood

Exposure of Sensitive Information to an Unauthorized Actor

Parent: CWE-668 - Exposure of Resource to Wrong Sphere

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

10,215 vulnerabilities with CWE-200
CVE-2007-6502
Hosting Controller 6.1 Hot fix 3.3 - Info Disclosure
CVE-2007-6283
Red Hat Enterprise Linux 5 & Fedora - Privilege Escalation
CVE-2007-6417
Linux kernel <2.6.24 - Info Disclosure
CVE-2007-6418
Debian Linux - MySQL Password Exposure via libdspam7-drv-mysql Cron Job
CVE-2007-6405
Sergey Lyubka Simple HTTPD <1.38 - RCE
CVE-2007-6408
IBM Tivoli Provisioning Manager Express - Info Disclosure
CVE-2007-6249
etc-update <2.1.3.11 - Info Disclosure
CVE-2007-6221
TuMusika Evolution <1.7R5 - Info Disclosure
CVE-2007-6206
Linux kernel <2.6.24-rc3 - Info Disclosure
CVE-2007-6197
BEA AquaLogic Interaction <6.0.1.218452 - Info Disclosure
CVE-2007-6150
FreeBSD 5.5 6.1-6.3 7.0 beta 4 - Unauthorized Sensitive Information Exposure via Random Device State Tracking
CVE-2007-6190
Cisco Unified IP Phone - Authenticated Audio Eavesdropping via Extension Mobility RTP Stream
CVE-2007-6193
Citrix NetScaler 8.0 - Info Disclosure
CVE-2007-6161
Tilde CMS < 4.0 - Exposure of Sensitive Information via Search Parameter
CVE-2007-6095
Ingate Firewall <4.6.0 & SIParator <4.6.0 - Privilege Escalation
CVE-2007-5899
PHP < 5.2.4 - Exposure of Sensitive Information via output_add_rewrite_var
CVE-2007-6043
Microsoft Windows 2000 - Predictable Cryptography
CVE-2007-4688
Apple Mac OS X <10.4.11 - Info Disclosure
CVE-2007-5934
PEAR MDB2 <2.5.0a1 - Info Disclosure
CVE-2007-5922
BitchX Cypress 1.0k - Unauthorized Sensitive Information Exposure via Backdoored mdop.m Module
CVE-2007-5816
CONTENTCustomizer <3.1mp - Info Disclosure
CVE-2007-0011
Citrix Access Gateway - Session Hijacking via URL Session ID Exposure
CVE-2007-5774
Flatnuke3 - Information Exposure via File Manager Invalid Argumentname Parameter
CVE-2007-4861
SAXON 5.4 - Exposure of Sensitive Information via Error Messages
CVE-2007-5413
HP OpenView Configuration Management 4.0-4.2i - Unauthenticated Arbitrary File Read via Tilde Path Traversal
Details
Vulnerabilities 10,215
Exploit Likelihood High