CWE-209

High likelihood

Generation of Error Message Containing Sensitive Information

Parent: CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

The product generates an error message that includes sensitive information about its environment, users, or associated data.

561 vulnerabilities with CWE-209
CVE-2019-6122 LOW
NiceHash Miner < 2.0.3.0 - Username Enumeration via Error Message
CVSS 3.1
CVE-2019-4512 MEDIUM
IBM Maximo Asset Mgmt <7.6.1.1 - Info Disclosure
CVSS 4.3
CVE-2019-4441 MEDIUM
IBM WebSphere App Server <9.0 - Info Disclosure
CVSS 5.3
CVE-2019-12156 MEDIUM
JetBrains TeamCity <2018.2.5 - Info Disclosure
CVSS 5.3
CVE-2019-3730 HIGH
RSA BSAFE Micro Edition Suite <4.1.6.3-4.4 - Info Disclosure
CVSS 7.5
CVE-2019-15032 MEDIUM
Pydio 6.0.8 - Unauthenticated Sensitive Information Exposure via Remote Upload Error Message
CVSS 5.3
CVE-2019-3756 MEDIUM
RSA Archer < 6.6.0.3 - Information Disclosure via Error Message
CVSS 6.5
CVE-2019-11662 MEDIUM
Micro Focus Service Manager <9.70 - Info Disclosure
CVSS 4.3
CVE-2019-6792 MEDIUM
GitLab 8.9.0-11.5.7, 11.6.0-11.6.5, 11.7.0 - Path Disclosure via Project Import Error Message
CVSS 5.3
CVE-2019-5483 MEDIUM
Seneca < 3.9.0 - Unauthorized Exposure of Environment Variables
CVSS 5.3
CVE-2019-16101 MEDIUM
Silver Peak EdgeConnect <8.1.7.x - Info Disclosure
CVSS 5.3
CVE-2019-9455 LOW
Android - Kernel Pointer Leak via Video Driver WARN_ON Statement
CVSS 2.3
CVE-2019-11602 MEDIUM
Bosch IoT Gateway <9.2.0 & mBS SDK <8.2.6 - Information Disclosure via Backup & Restore
CVSS 5.3
CVE-2019-4485 MEDIUM
IBM Emptoris Sourcing <10.1.4 - Info Disclosure
CVSS 4.3
CVE-2019-4484 MEDIUM
IBM Emptoris Sourcing <10.1.4 - Info Disclosure
CVSS 4.3
CVE-2019-4420 MEDIUM
IBM Intelligent Operations Center <5.2.0 - Info Disclosure
CVSS 6.2
CVE-2019-4308 MEDIUM
IBM Emptoris Sourcing <10.1.3 - Info Disclosure
CVSS 4.3
CVE-2019-14433 MEDIUM
OpenStack Nova <17.0.12-19.0.2 - Info Disclosure
CVSS 6.5
CVE-2019-1020013 MEDIUM
parse-server <3.6.0 - Info Disclosure
CVSS 5.3
CVE-2019-7941 HIGH
Adobe Campaign Classic <18.10.5-8984 - Info Disclosure
CVSS 7.5
CVE-2019-4129 MEDIUM
IBM Spectrum Protect Operations Center 7.1.0.000-7.1.9.200 - Information Disclosure via Stack Trace Error Message
CVSS 5.3
CVE-2019-4269 HIGH
IBM WebSphere Application Server - Info Disclosure
CVSS 7.5
CVE-2019-4377 MEDIUM
IBM Sterling B2B Integrator <6.0.0.1 - Info Disclosure
CVSS 4.3
CVE-2019-12903 MEDIUM
Pydio Cells < 1.5.0 - Sensitive Information Exposure via Unicode Name Field Error Message
CVSS 4.3
CVE-2019-4257 MEDIUM
IBM InfoSphere Information Server 11.5 and 11.7 - Sensitive Information Exposure via Error Message
CVSS 4.3
Details
Vulnerabilities 561
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits