CWE-209

High likelihood

Generation of Error Message Containing Sensitive Information

Parent: CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

The product generates an error message that includes sensitive information about its environment, users, or associated data.

561 vulnerabilities with CWE-209
CVE-2023-4457 MEDIUM
Grafana Google Sheets Data Source Plugin 0.9.0-1.2.2 - Information Disclosure via Unsanitized Error Messages
CVSS 5.5
CVE-2023-42475 MEDIUM
SAP S/4HANA - Information Disclosure via Statutory Reporting File Storage
CVSS 4.3
CVE-2023-0833 MEDIUM
okhttp < 4.9.2 - Information Disclosure via Exception Message
CVSS 4.7
CVE-2023-41027 HIGH
Juplink RX4-1500 Wifi - Info Disclosure
CVSS 8.0
CVE-2023-40725 MEDIUM
QMS Automotive <V12.39 - Info Disclosure
CVSS 4.0
CVE-2023-37489 MEDIUM
SAP BusinessObjects BI Platform 403 - Unauthenticated Info Disclosure via VMS
CVSS 5.3
CVE-2023-39264 MEDIUM
Apache Superset <= 2.1.0 - Sensitive Information Exposure via REST API Error Stack Traces
CVSS 4.3
CVE-2023-35124 LOW
OAS Platform 18.00.0072 - Information Disclosure via Configuration Management Requests
CVSS 3.1
CVE-2023-33835 MEDIUM
IBM Security Verify Information Queue <10.0.4,10.0.5 - Info Disclosure
CVSS 4.3
CVE-2023-33834 MEDIUM
IBM Security Verify Information Queue <10.0.5 - Info Disclosure
CVSS 4.3
CVE-2023-40767 CRITICAL
PHPJabbers Make an Offer Widget v1.0 - Info Disclosure
CVSS 9.8
CVE-2023-40766 CRITICAL
PHPJabbers Ticket Support Script <3.2 - Info Disclosure
CVSS 9.8
CVE-2023-40765 CRITICAL
PHPJabbers Event Booking Calendar <4.0 - Info Disclosure
CVSS 9.8
CVE-2023-40764 CRITICAL
PHP Jabbers Car Rental Script 3.0 - Info Disclosure
CVSS 9.8
CVE-2023-40763 CRITICAL
PHPJabbers Taxi Booking Script <v2.0 - Info Disclosure
CVSS 9.8
CVE-2023-40762 CRITICAL
PHPJabbers Fundraising Script v1.0 - Info Disclosure
CVSS 9.8
CVE-2023-40761 CRITICAL
PHPJabbers Yacht Listing Script <2.0 - Info Disclosure
CVSS 9.8
CVE-2023-40760 CRITICAL
PHP Jabbers Hotel Booking System <4.0 - Info Disclosure
CVSS 9.8
CVE-2023-40759 CRITICAL
PHP Jabbers Restaurant Booking Script <3.0 - Info Disclosure
CVSS 9.8
CVE-2023-40758 CRITICAL
PHPJabbers Document Creator 1.0 - Info Disclosure
CVSS 9.8
CVE-2023-40757 CRITICAL
PHPJabbers Food Delivery Script <3.1 - Info Disclosure
CVSS 9.8
CVE-2023-26272 MEDIUM
IBM Guardium Cloud Key Manager <1.10.3 - Info Disclosure
CVSS 5.3
CVE-2023-32755 MEDIUM
e-Excellence U-Office Force - Unauthenticated Sensitive Information Exposure via Error Message
CVSS 5.3
CVE-2023-40171 CRITICAL
Netflix Dispatch < 20230817 - JWT Secret Key Exposure in Basic Authentication Provider Error Message
CVSS 9.1
CVE-2023-35009 MEDIUM
IBM Cognos Analytics 11.1.7, 11.2.0, 11.2.1 - Unauthenticated Sensitive Information Exposure
CVSS 5.3
Details
Vulnerabilities 561
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits