Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-203

CWE-203

Observable Discrepancy

Parent: CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

The product behaves differently or sends different responses under different circumstances in a way that is observable to an unauthorized actor.

735 vulnerabilities with CWE-203

CVE-2020-11576 MEDIUM

Argo CD 1.5.0 - User Enumeration via Session API Response Discrepancy

CVE-2020-10102 MEDIUM

Zammad 3.0-3.2.0 - Unauthenticated User Enumeration via Forgot Password Response Discrepancy

CVE-2020-7959 MEDIUM

LabVantage LIMS 8.3 - Info Disclosure

CVE-2020-8989 MEDIUM

Voatz 2020-01-01 - Observable Discrepancy via Metadata Length Variation

CVE-2020-6400 MEDIUM

Google Chrome <80.0.3987.87 - Info Disclosure

CVE-2020-2102 MEDIUM

Jenkins < 2.204.1 and < 2.218 - Timing Attack via HMAC Validation

CVE-2020-2101 MEDIUM

Jenkins < 2.204.1 and < 2.218 - Timing Attack via Connection Secret Validation

CVE-2019-25337 CRITICAL

OwnCloud 8.1.8 - Username Enumeration via Share Endpoint Wildcard Search

CVE-2019-25056 MEDIUM

Bromite <78.0.3904.130 - Info Disclosure

CVE-2019-12953 MEDIUM

Dropbear SSH 2011.54-2018.76 - Username Enumeration via Inconsistent Failure Delay

CVE-2019-19338 MEDIUM

Linux upstream kernel <5.5 - Memory Corruption

CVE-2019-14067 MEDIUM

Qualcomm APQ8009 and related firmware - Information Leak via Timing Side Channel in memcmp

CVE-2019-14007 MEDIUM

Snapdragon Auto- Snapdragon Compute - Timing Side Channel

CVE-2019-10483 MEDIUM

Qualcomm APQ8009 and related firmware - Timing Side-Channel in QTEE via Non-Constant-Time Comparison

CVE-2019-16516 MEDIUM

ConnectWise Control <19.3.25270.7185 - Info Disclosure

CVE-2019-18222 MEDIUM

Arm Mbed Crypto < 3.0.0 and Mbed TLS < 2.7.13 - ECDSA Private Key Recovery via Side-Channel Attack

CVE-2019-20399 MEDIUM

Parity libsecp256k1 < 0.3.1 - Timing Side-Channel in Scalar Overflow Check

CVE-2019-9472 MEDIUM

Android - Timing Attack in DCRYPTO_equals Function

CVE-2019-19805 MEDIUM

MFScripts YetiShare 3.5.2-4.5.3 - Account Enumeration via Timing Discrepancy in Password Reset

CVE-2019-16782 MEDIUM

Rack <1.6.12, 2.0.8 - Info Disclosure

CVE-2019-18850 HIGH

TrevorC2 <1.1/1.2 - Info Disclosure

CVE-2019-13456 MEDIUM

FreeRADIUS 3.0.0-3.0.19 - Password Information Leak via EAP-pwd Handshake

CVE-2019-13684 MEDIUM

Google Chrome < 72.0.3626.81 - Cross-Origin Data Leak via JavaScript

CVE-2019-13666 HIGH

Google Chrome <77.0.3865.75 - Info Disclosure

CVE-2019-18887 HIGH

Symfony 2.8.0-2.8.50, 3.4.0-3.4.34, 4.2.0-4.2.11, 4.3.0-4.3.7 - Timing Attack in UriSigner

Previous Page 25 of 30 Next

Details

Vulnerabilities 735

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy