CWE-200

High likelihood

Exposure of Sensitive Information to an Unauthorized Actor

Parent: CWE-668 - Exposure of Resource to Wrong Sphere

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

10,127 vulnerabilities with CWE-200
CVE-2025-2882 MEDIUM
GreenPay(tm) by Green.Money 3.0.0-3.0.9 - Unauthenticated Sensitive Information Exposure via phpinfo.php
CVSS 5.3
CVE-2025-3403 LOW
Vivotek NVR <4.2.0.101 - Info Disclosure
CVSS 2.7
CVE-2025-31492 HIGH
mod_auth_openidc <2.4.16.11 - Info Disclosure
CVE-2025-31486 MEDIUM
Vite server.fs.deny Bypass - Local File Inclusion
CVSS 5.3
CVE-2025-31127 MEDIUM
Element X Android <25.03.3 - Info Disclosure
CVSS 5.3
CVE-2025-31126 MEDIUM
Element X iOS <25.03.7 - Info Disclosure
CVSS 5.3
CVE-2025-30218 MEDIUM
Next.js <12.3.6, <13.5.10, <14 - SSRF
CVSS 5.9
CVE-2025-2842 MEDIUM
Tempo Operator - Privilege Escalation
CVSS 4.3
CVE-2025-2786 MEDIUM
Red Hat OpenShift distributed tracing 3.5.1 - Exposure of Sensitive Information via Tempo Operator ServiceAccount
CVSS 4.3
CVE-2025-30224 MEDIUM
MySQL C client library - Info Disclosure
CVE-2025-3031 MEDIUM
Firefox < 137.0 - Exposure of Sensitive Information via JIT Stack Spill
CVSS 6.5
CVE-2025-3059 MEDIUM
Drupal Profile Private - Exposure of Sensitive Information to an Unauthorized Actor
CVSS 5.3
CVE-2025-31191 MEDIUM
iPadOS < 18.4 - Unauthorized Sensitive Data Access
CVSS 5.5
CVE-2025-31183 CRITICAL
Apple iPadOS < 18.4 - Unauthorized Sensitive Data Exposure via Data Container Access
CVSS 9.8
CVE-2025-30463 MEDIUM
iPadOS < 18.4 - Unprotected User Data Exposure via Data Container Access
CVSS 5.5
CVE-2025-30455 MEDIUM
macOS 14.0-14.7.4 and <15.4 - Unauthorized Exposure of Private Information
CVSS 5.5
CVE-2025-30454 MEDIUM
iPadOS < 18.4 - Unauthorized Exposure of Sensitive Information via Path Handling Issue
CVSS 5.5
CVE-2025-30451 MEDIUM
macOS Sequoia <15.4 - Info Disclosure
CVSS 5.5
CVE-2025-30447 MEDIUM
iPadOS < 17.7.6 - Unauthorized Sensitive Data Exposure via Logging
CVSS 5.5
CVE-2025-30443 MEDIUM
macOS Ventura <13.7.5 - Info Disclosure
CVSS 5.5
CVE-2025-30439 MEDIUM
iPadOS < 18.4 - Unauthorized Sensitive Information Exposure via Locked Device
CVSS 4.6
CVE-2025-30435 MEDIUM
macOS Sequoia <15.4 - Info Disclosure
CVSS 5.5
CVE-2025-30426 CRITICAL
iPadOS < 17.7.6 and < 18.4 - Unauthorized App Enumeration via Entitlement Check Bypass
CVSS 9.8
CVE-2025-30424 CRITICAL
macOS Ventura <13.7.5 - Info Disclosure
CVSS 9.8
CVE-2025-24283 MEDIUM
iPadOS < 18.4 - Unauthorized Sensitive Data Exposure via Logging Issue
CVSS 5.5
Details
Vulnerabilities 10,127
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits