Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-203

CWE-203

Observable Discrepancy

Parent: CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

The product behaves differently or sends different responses under different circumstances in a way that is observable to an unauthorized actor.

735 vulnerabilities with CWE-203

CVE-2018-14597 MEDIUM

CA Technologies - Info Disclosure

CVE-2018-9194 MEDIUM

FortiOS 5.4.6-5.4.9, 6.0.0-6.0.1 - Plaintext Recovery and Man-in-the-Middle Attack via RSA PKCS #1 v1.5 Encryption

CVE-2018-9192 MEDIUM

FortiOS 5.4.6-5.4.9, 6.0.0-6.0.1 - Plaintext Recovery and Man-in-the-Middle Attack via RSA PKCS #1 v1.5 Encryption

CVE-2018-10919 MEDIUM

Canonical Ubuntu Linux < 4.6.16 - Information Disclosure

CVE-2018-3620 MEDIUM

Intel Core i3 - Information Disclosure via L1 Data Cache Side-Channel Analysis

CVE-2018-3615 HIGH

Intel Core i3 and Core i5 - Information Disclosure via L1 Data Cache Side-Channel Analysis

CVE-2018-0495 MEDIUM

Libgcrypt < 1.7.10 and 1.8.x < 1.8.3 - ECDSA Key Discovery via Memory-Cache Side-Channel Attack

CVE-2018-3640 MEDIUM

Intel Atom C/E/Z - Information Disclosure via Rogue System Register Read

CVE-2018-3639 MEDIUM

Intel Atom C/E/X5/X7/Z - Information Disclosure via Speculative Store Bypass

CVE-2018-10949 MEDIUM

Zimbra Collaboration Suite 8.6-8.8 < 8.8.8 - Account Enumeration via Error Message Discrepancy

CVE-2018-1000119 MEDIUM

Sinatra rack-protection <1.5.5, <2.0.0 - CSRF

CVE-2018-0134 MEDIUM

Cisco Mobility Services Engine - Unauthenticated Sensitive Information Exposure via RADIUS Authentication Response

CVE-2017-18268 MEDIUM

Symantec IntelligenceCenter 3.3 - Return of the Bleichenbacher Oracle Threat (ROBOT) Attack

CVE-2017-15533 MEDIUM

Symantec SSL Visibility ROBOT Attack (3.8.4FC, 3.10 < 3.10.4.1, 3.11, 3.12 < 3.12.2.1)

CVE-2017-5753 MEDIUM

Intel Atom - Information Disclosure via Speculative Execution Side-Channel

CVE-2017-5715 MEDIUM

Intel Atom C/E/X3 - Information Disclosure via Speculative Execution Side-Channel

CVE-2017-12373 MEDIUM

Legacy Cisco ASA 5500 Series - Info Disclosure

CVE-2017-17427 MEDIUM

Radware Alteon Firmware 31.0.0.0-31.0.3.0 - Adaptive Chosen Ciphertext Attack via RSA Encryption

CVE-2017-13099 HIGH

wolfSSL < 3.12.2 - Private Key Recovery via Bleichenbacher Oracle in RSA Key Exchange

CVE-2017-13098 HIGH

BouncyCastle TLS < 1.0.3 - Private Key Recovery via Bleichenbacher Oracle

CVE-2017-1000385 MEDIUM

Erlang/OTP - Observable Discrepancy in TLS RSA PKCS #1 1.5 Padding

CVE-2017-6168 HIGH

F5 BIG-IP 11.6.0-11.6.2 12.0.0-12.1.2 13.0.0-13.0.0 - Adaptive Chosen Ciphertext Attack via Client SSL Profile

CVE-2017-5107 MEDIUM

Google Chrome <60.0.3112.78 - Info Disclosure

CVE-2017-7006 MEDIUM

Apple <10.3.3, <10.1.2, <10.2.2 - Info Disclosure

CVE-2017-9735 HIGH

Jetty < 9.2.22 and 9.4.0-9.4.6.v20170531 - Timing Attack via Password Validation

Previous Page 28 of 30 Next

Details

Vulnerabilities 735

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy