CWE-200

High likelihood

Exposure of Sensitive Information to an Unauthorized Actor

Parent: CWE-668 - Exposure of Resource to Wrong Sphere

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

10,142 vulnerabilities with CWE-200
CVE-2024-3182 MEDIUM
TIBCO Hawk <6.2.4 - Info Disclosure
CVSS 6.5
CVE-2024-4837 MEDIUM
Progress Telerik Report Server < 10.1.24.514 - Sensitive Information Exposure
CVSS 5.3
CVE-2024-34717 MEDIUM
PrestaShop 8.1.5 - Unauthenticated Exposure of Sensitive Invoice Data via Secure Key Parameter
CVSS 5.3
CVE-2024-34358 MEDIUM
TYPO3 <9.5.48 ELTS, <10.4.45 ELTS, <11.5.37 LTS, <12.4.15 LTS, <13....
CVSS 5.3
CVE-2024-33865 HIGH
linqi < 1.4.0.1 - NTLM Hash Exposure via API Endpoints
CVSS 7.5
CVE-2024-27947 MEDIUM
RUGGEDCOM CROSSBOW < V5.5 - Exposure of Sensitive Information via Log Message Forwarding
CVSS 5.3
CVE-2024-22270 HIGH
VMware Workstation/Fusion - Info Disclosure
CVSS 7.1
CVE-2024-22269 HIGH
VMware Workstation/Fusion - Info Disclosure
CVSS 7.1
CVE-2024-35171 MEDIUM
Academy LMS <= 1.9.25 - Exposure of Sensitive Information
CVSS 5.3
CVE-2024-35166 MEDIUM
Filebird < 5.6.3 - Exposure of Sensitive Information
CVSS 5.3
CVE-2024-35165 MEDIUM
Gutenify < 1.4.0 - Sensitive Data Exposure via API
CVSS 5.3
CVE-2024-34708 MEDIUM
Directus < 10.11.0 - Exposure of Sensitive Information via Alias Parameter
CVSS 4.9
CVE-2024-34549 MEDIUM
WP Job Manager <2.2.2 - Info Disclosure
CVSS 5.3
CVE-2024-34080 MEDIUM
MantisBT < 2.26.2 - Unauthorized Sensitive Information Exposure via Note Reference Link
CVSS 5.3
CVE-2024-32100 MEDIUM
Easy Digital Downloads <3.2.11 - Info Disclosure
CVSS 5.3
CVE-2024-23236 MEDIUM
macOS < 14.5 - Unauthorized Arbitrary File Read
CVSS 5.5
CVE-2024-4596 LOW
Kimai < 2.16.0 - Exposure of Sensitive Information via PHPSESSIONID
CVSS 3.7
CVE-2024-4584 MEDIUM
Faraday GM8181/GM828x <20240429 - Info Disclosure
CVSS 5.3
CVE-2024-4583 MEDIUM
Faraday GM8181/GM828x <20240429 - Info Disclosure
CVSS 5.3
CVE-2024-34368 MEDIUM
Mooberry Book Manager <4.15.12 - Info Disclosure
CVSS 5.3
CVE-2024-34388 HIGH
Scribit GDPR Compliance <1.2.5 - Info Disclosure
CVSS 7.5
CVE-2024-34382 MEDIUM
RoboSoft Robo Gallery <3.2.18 - Info Disclosure
CVSS 5.3
CVE-2024-26312 MEDIUM
Archer Platform 6 < 2024.03 - Authenticated Sensitive Information Exposure via Popup Warning Message
CVSS 4.3
CVE-2024-33753 HIGH
Section Camera <V2.5.5.3116-S50-SMA - Privilege Escalation
CVSS 8.2
CVE-2024-23193 MEDIUM
OX App Suite < 8.22 - Unauthorized E-Mail Exposure via PDF Export Cache
CVSS 5.3
Details
Vulnerabilities 10,142
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits