Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-203

CWE-203

Observable Discrepancy

Parent: CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

The product behaves differently or sends different responses under different circumstances in a way that is observable to an unauthorized actor.

733 vulnerabilities with CWE-203

CVE-2020-28208 MEDIUM

Rocket.Chat <= 3.9.1 - Email Address Enumeration via Password Reset Function

CVE-2020-35624 MEDIUM

MediaWiki < 1.35.1 - Information Disclosure via SecurePoll Vote Timestamp

CVE-2020-35480 MEDIUM

MediaWiki < 1.35.1 - Information Disclosure of Hidden User Accounts

CVE-2020-27026 MEDIUM

Android 11 - Local Information Disclosure via Fingerprint Presence Check

CVE-2020-0464 MEDIUM

Android 10 - Local Information Disclosure via Resolv Cache Lookup

CVE-2020-7962 MEDIUM

One Identity Password Manager 5.8 - Info Disclosure

CVE-2020-12912 MEDIUM

AMD Energy Driver for Linux - Unauthenticated Side Channel Attack via RAPL Interface

CVE-2020-8695 MEDIUM

Intel(R) Processors - Info Disclosure

CVE-2020-26939 MEDIUM

BC <1.61-1.0.1.2 - Info Disclosure

CVE-2020-3585 MEDIUM

Cisco Firepower Threat Defense <6.4.0.10 & ASA <9.13.1.13 - TLS Bleichenbacher Oracle Attack

CVE-2020-1685 MEDIUM

Juniper Junos OS on QFX5K Series - Unintended Traffic Bypass via VXLAN Stateless Firewall Filter

CVE-2020-4699 MEDIUM

IBM Security Access Manager 9.0.7 and Security Verify Access 10.0.0 - Timing Side-Channel Information Disclosure

CVE-2020-4661 MEDIUM

IBM Security Access Manager 9.0.7 and Security Verify Access 10.0.0 - Timing Side-Channel Information Disclosure

CVE-2020-4660 MEDIUM

IBM Security Access Manager 9.0.7 and Security Verify Access 10.0.0 - Timing Side-Channel Information Disclosure

CVE-2020-5143 MEDIUM

SonicOS - Unauthenticated Administrator Username Enumeration via SSLVPN Login Page

CVE-2020-12401 MEDIUM

Firefox < 80 - Timing Side-Channel in ECDSA Signature Generation

CVE-2020-12400 MEDIUM

Firefox <80 - Timing-Based Side Channel

CVE-2020-15237 MEDIUM

Shrine < 3.3.0 - Observable Timing Discrepancy in Derivation Endpoint Signature Verification

CVE-2020-25200 MEDIUM

Pritunl 1.29.2145.25 - Username Enumeration via Login Attempt Error Code Discrepancy

CVE-2020-5929 MEDIUM

BIG-IP <13.0.0 HF2, <12.1.2 HF1, <11.6.2 - SSL/TLS Handshake

CVE-2020-3509 HIGH

Cisco IOS XE for cBR-8 - Unauthenticated Denial of Service via DHCPv4 Message Parsing

CVE-2020-12788 HIGH

Microchip Atmel ATSAMA5 - Info Disclosure

CVE-2020-11683 MEDIUM

AT91bootstrap 3.7.2-3.9.2 - Timing Side Channel via CMAC Forgery

CVE-2020-1968 LOW

OpenSSL 1.0.2-1.0.2v - Pre-Master Secret Disclosure via Raccoon Attack

CVE-2020-16150 MEDIUM

Mbed TLS < 2.7.17 - Timing Side-Channel Attack via CBC Mode Padding

Previous Page 23 of 30 Next

Details

Vulnerabilities 733

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy