CWE-200

High likelihood

Exposure of Sensitive Information to an Unauthorized Actor

Parent: CWE-668 - Exposure of Resource to Wrong Sphere

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

10,217 vulnerabilities with CWE-200
CVE-2000-0649
Microsoft IIS HTTP Internal IP Disclosure
CVE-2000-0588
SawMill 5.0.21 - Unauthenticated Arbitrary File Read via rfcf Parameter
CVE-2000-0132
Microsoft Java Virtual Machine - Unauthenticated Arbitrary File Read via getSystemResourceAsStream
CVE-1999-1462
Big Brother 1.09b-1.09c - Unauthenticated Arbitrary File Read via bb-hist.sh CGI Module
CVE-1999-0877
Internet Explorer 5 - Unauthenticated Exposure of Sensitive Information via IFRAME ExecCommand
CVE-1999-0468 HIGH
Internet Explorer 5.0 - Exposure of Sensitive Information via Microsoft Scriptlet Component
CVSS 8.2
CVE-1999-0605
Austin Contract Computing Merchant Order Form - Exposure of Sensitive Information via Incorrect CGI Configuration
CVE-1999-0606
EZMall 2000 - Exposure of Sensitive Information via mall2000.cgi Misconfiguration
CVE-1999-0372
Microsoft BackOffice Server - Unprotected Credential Exposure via Reboot.ini
CVE-1999-0348
Internet Information Server - Sensitive Information Exposure via ASP Caching
CVE-1999-0453
Cisco Router - Unauthenticated Device Identification via CDP Port 1999 SYN Packet
CVE-1999-0632 HIGH
RPC Portmapper Service - Info Disclosure
CVSS 7.3
CVE-1999-1136
HP-UX <11.0 & MPE/iX <5.5 - Data Transfer Compromise
CVE-1999-0524 MEDIUM
macOS - Unprotected ICMP Information Exposure
CVSS 4.0
CVE-1999-0059 HIGH
IRIX - Unauthenticated Exposure of Sensitive Information via fam Service
CVSS 7.3
CVE-1999-0511 CRITICAL
Windows 2000 and Windows NT - Unintended IP Forwarding
CVSS 9.1
CVE-1999-0517 MEDIUM
HP-UX - Unauthenticated SNMP Community Name Exposure
CVSS 5.9
Details
Vulnerabilities 10,217
Exploit Likelihood High