CWE-209

High likelihood

Generation of Error Message Containing Sensitive Information

Parent: CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

The product generates an error message that includes sensitive information about its environment, users, or associated data.

561 vulnerabilities with CWE-209
CVE-2021-27774 LOW
HCL Digital Experience - Information Exposure via Error Response
CVSS 3.1
CVE-2021-38924 HIGH
IBM Maximo Asset Management <7.6.1.2 - Info Disclosure
CVSS 7.5
CVE-2021-3513 HIGH
Keycloak - Confidentiality Info Disclosure
CVSS 7.5
CVE-2021-39086 MEDIUM
IBM Sterling File Gateway 6.0.0.0-6.0.3.5, 6.1.0.0-6.1.0.4, 6.1.1.0-6.1.1.1 - Information Disclosure via Error Message
CVSS 5.3
CVE-2021-39018 MEDIUM
IBM Engineering Lifecycle Optimization - Publishing 6.0.6, 6.0.6.1, 7.0, 7.0.1, 7.0.2 - Sensitive Information Disclosure
CVSS 4.3
CVE-2021-39023 HIGH
IBM Guardium Data Encryption 4.0.0 and 5.0.0 - Sensitive Information Exposure via Error Message
CVSS 7.5
CVE-2021-43206 MEDIUM
Fortinet FortiOS <7.0.4 - Info Disclosure
CVSS 4.3
CVE-2021-39033 MEDIUM
IBM Sterling B2B Integrator 6.0.0.0-6.0.3.5 and 6.1.0.0-6.1.1.0 - Sensitive Information Exposure via Error Message
CVSS 6.5
CVE-2021-32937 HIGH
MDT AutoSave <6.02.06 - Info Disclosure
CVSS 7.5
CVE-2021-35251 MEDIUM
SolarWinds Web Help Desk < 12.7.8 - Sensitive Information Disclosure via Detailed Error Messages
CVSS 5.3
CVE-2021-46353 MEDIUM
D-Link DIR-X1860 <1.03 RevA1 - Info Disclosure
CVSS 5.3
CVE-2021-3620 MEDIUM
Ansible < 2.9.27 - Sensitive Information Disclosure in Error Messages
CVSS 5.5
CVE-2021-26726 HIGH
Valmet DNA 2012-2021 - Remote Code Execution via TCP Port 1517
CVSS 8.8
CVE-2021-40338 LOW
Hitachi Energy LinkOne <3.27 - Info Disclosure
CVSS 3.7
CVE-2021-38894 LOW
IBM Security Verify <10.0.3 - Info Disclosure
CVSS 2.7
CVE-2021-4177 MEDIUM
live_helper_chat < 3.91 - Sensitive Information Exposure via Error Message
CVSS 5.3
CVE-2021-44155 MEDIUM
Reprise License Manager 14.2-<15.1 - User Enumeration via Login Error Message
CVSS 5.3
CVE-2021-43542 MEDIUM
Thunderbird <91.4.0-Firefox <95 - Info Disclosure
CVSS 6.5
CVE-2021-38980 MEDIUM
IBM Tivoli Key Lifecycle Manager <4.1 - Info Disclosure
CVSS 5.3
CVE-2021-38981 MEDIUM
IBM Tivoli Key Lifecycle Manager <4.1 - Info Disclosure
CVSS 5.3
CVE-2021-40126 MEDIUM
Cisco Umbrella - Authenticated Email Enumeration via Dashboard Error Message
CVSS 4.3
CVE-2021-35060 MEDIUM
OpenWay WAY4 ACS <1.2.278-2693 - Info Disclosure
CVSS 5.3
CVE-2021-20552 MEDIUM
IBM Sterling File Gateway <6.1.1.0 - Info Disclosure
CVSS 4.3
CVE-2021-20485 MEDIUM
IBM Sterling File Gateway <6.1.0.3 - Info Disclosure
CVSS 4.3
CVE-2021-20377 LOW
IBM Security Guardium 11.3 - Info Disclosure
CVSS 2.7
Details
Vulnerabilities 561
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits