CWE-209

High likelihood

Generation of Error Message Containing Sensitive Information

Parent: CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

The product generates an error message that includes sensitive information about its environment, users, or associated data.

561 vulnerabilities with CWE-209
CVE-2023-38714 MEDIUM
IBM Cloud Pak System <2.3.3.7 - Info Disclosure
CVSS 5.3
CVE-2023-38713 MEDIUM
IBM Cloud Pak System <2.3.3.7 - Info Disclosure
CVSS 5.3
CVE-2023-40457
Extreme Networks ExtremeXOS (EXOS) 30.7.1.1 - DoS
CVE-2023-50355 LOW
HCL Sametime < 12.0.2 - Sensitive Information Exposure via Error Messages
CVSS 3.6
CVE-2023-47728 MEDIUM
IBM Cloud Pak for Security 1.10.0.0-1.10.11.0 & QRadar Suite 1.10.12.0-1.10.22.0 - Sensitive Info Exposure via Error
CVSS 6.5
CVE-2023-50953 MEDIUM
IBM InfoSphere Information Server 11.7 - Sensitive Information Exposure via Detailed Error Messages
CVSS 5.4
CVE-2023-23474 LOW
IBM Cognos Controller 10.4.1, 10.4.2, 11.0.0 - Sensitive Information Exposure via Stack Trace
CVSS 3.7
CVE-2023-5617 MEDIUM
Hitachi Vantara Pentaho < 9.3.0.6 - Information Disclosure via Tomcat Error Messages
CVSS 5.3
CVE-2023-47152 MEDIUM
IBM Db2 < 11.5.9 - Information Disclosure via Stack Trace
CVSS 5.9
CVE-2023-49107 MEDIUM
Hitachi Device Manager <8.8.5-04 - Info Disclosure
CVSS 5.3
CVE-2023-6944 MEDIUM
Red Hat Developer Hub < 1.21.0 - GitLab Access Token Exposure via Catalog-Import Error Message
CVSS 5.7
CVE-2023-50348 LOW
HCL DRYiCE MyXalytics - Information Disclosure via Detailed Error Messages
CVSS 3.1
CVE-2023-45701 MEDIUM
HCL Launch 7.0.0.0-7.0.5.18 - Sensitive Information Exposure via Error Message
CVSS 4.3
CVE-2023-27319 MEDIUM
ONTAP Mediator <1.7 - Info Disclosure
CVSS 5.3
CVE-2023-47703 MEDIUM
IBM Security Guardium Key Lifecycle Manager 4.2.0-4.2.0.2 - Sensitive Information Exposure via Error Message
CVSS 5.3
CVE-2023-42013 MEDIUM
IBM UrbanCode Deploy 7.0.0.0-7.0.5.18 - Information Disclosure via Error Message
CVSS 5.3
CVE-2023-6839 MEDIUM
WSO2 API Manager - Information Disclosure via Error Message
CVSS 5.3
CVE-2023-48393 MEDIUM
Kaifa Technology WebITR - Info Disclosure
CVSS 4.3
CVE-2023-49878 MEDIUM
IBM Virtualization Engine TS7700 Firmware < 8.52.103.23 / < 8.53.1.21 - Sensitive Information Exposure
CVSS 4.3
CVE-2023-31048 MEDIUM
OPC UA .NET Standard Reference Server <1.4.371.86 - Info Disclosure
CVSS 5.3
CVE-2023-49080 LOW
jupyter_server < 2.11.2 - Authenticated Sensitive Information Exposure via API Error Traceback
CVSS 3.5
CVE-2023-43021 MEDIUM
IBM InfoSphere Information Server <11.7 - Info Disclosure
CVSS 5.3
CVE-2023-47636 MEDIUM
Pimcore Admin Classic Bundle < 1.2.1 - Full Path Disclosure via fopen Error Handling
CVSS 5.3
CVE-2023-5514 MEDIUM
Hitachi Energy eSOMS < 6.3.13 - Information Disclosure via Report Generation Query
CVSS 5.3
CVE-2023-46240 HIGH
CodeIgniter <4.4.3 - Info Disclosure
CVSS 7.5
Details
Vulnerabilities 561
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits