CWE-209

High likelihood

Generation of Error Message Containing Sensitive Information

Parent: CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

The product generates an error message that includes sensitive information about its environment, users, or associated data.

561 vulnerabilities with CWE-209
CVE-2025-36090 MEDIUM
IBM Analytics Content Hub 2.0-2.3 - Information Disclosure via Detailed Technical Error Message
CVSS 4.3
CVE-2025-40718 HIGH
Quiter Gateway < 4.7.0 - Sensitive Information Exposure via Error Message
CVSS 7.5
CVE-2025-5731 MEDIUM
Redhat Data Grid - Error Information Exposure
CVSS 5.5
CVE-2025-44203 HIGH
HotelDruid 3.0.7 - Unauthenticated Information Disclosure and Denial of Service via creadb.php SQL Error Messages
CVSS 7.5
CVE-2025-49128 MEDIUM
jackson-core 2.0.0-2.12.5 - Information Disclosure via Exception Message in JsonLocation
CVSS 4.0
CVE-2025-25025 MEDIUM
IBM Security Guardium 12.0 - Info Disclosure
CVSS 4.3
CVE-2025-40653 MEDIUM
M3M Printer Server Web - Info Disclosure
CVE-2025-41441 MEDIUM
Mailform Pro CGI < 4.3.4 - Unauthenticated Sensitive Information Exposure via Error Message
CVSS 5.3
CVE-2025-46746 MEDIUM
SEL Blueframe OS < 1.12.0 - Authenticated Information Disclosure via Error Message
CVSS 5.8
CVE-2025-4166 MEDIUM
HashiCorp Vault 0.3.0-1.19.2 and OpenBAO < 2.2.2 - Sensitive Information Exposure in KV v2 Plugin Error Logs
CVSS 4.5
CVE-2025-0049 LOW
GoAnywhere <7.8.0 - Info Disclosure
CVSS 3.5
CVE-2025-46575 MEDIUM
ZTE ZXCloud GoldenDB - Sensitive Information Disclosure via Error Message
CVSS 4.9
CVE-2025-25045 MEDIUM
IBM InfoSphere Information 11.7 - Info Disclosure
CVSS 4.3
CVE-2025-20150 MEDIUM
Cisco Nexus Dashboard - Info Disclosure
CVSS 5.3
CVE-2025-32238 MEDIUM
Online Booking & Scheduling Calendar for WordPress by vcita <= 4.5.5 - Sensitive Data Exposure via Error Message
CVSS 4.3
CVE-2025-0279 MEDIUM
HCL Traveler < 14.0.0.1 - Sensitive Information Exposure via Error Messages
CVSS 4.3
CVE-2025-31141 LOW
JetBrains TeamCity < 2025.03 - Credential Leakage via Cloud Profiles Page Exception
CVSS 2.7
CVE-2025-2239 MEDIUM
Hillstone Next Gen FireWall <5.5R8P23 - Info Disclosure
CVSS 5.3
CVE-2025-23185 MEDIUM
SAP Business Objects - Info Disclosure
CVSS 4.1
CVE-2025-20002 MEDIUM
GMOD Apollo < 2.8.0 - Sensitive Information Disclosure via File Upload Error Message
CVSS 5.3
CVE-2025-0941 MEDIUM
MET ONE 3400+ <1.0.41 - Info Disclosure
CVSS 5.8
CVE-2025-23216 MEDIUM
Argo CD < 2.11.13, 2.13.0-2.13.4 - Sensitive Information Exposure in Error Messages and Diff View
CVSS 6.8
CVE-2025-22218 HIGH
VMware Aria Operations for Logs - Info Disclosure
CVSS 8.5
CVE-2025-24552 MEDIUM
Paytium <= 4.4.11 - Sensitive Information Exposure via Error Message
CVSS 5.3
CVE-2025-0053 MEDIUM
SAP NetWeaver Application Server for ABAP and ABAP Platform - Unauthenticated Information Disclosure via URL Parameter
CVSS 5.3
Details
Vulnerabilities 561
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits