CWE-212
Improper Removal of Sensitive Information Before Storage or Transfer
The product stores, transfers, or shares a resource that contains sensitive information, but it does not properly remove that information before the product makes the resource available to unauthorized actors.
98 vulnerabilities with CWE-212
CVE-2026-27640
HIGH
tfplan2md <1.26.1 - Info Disclosure
CVSS 7.5
CVE-2025-8860
LOW
QEMU - Info Disclosure
CVSS 3.3
CVE-2025-59955
MEDIUM
Coollabs Coolify - Information Disclosure
CVSS 5.7
CVE-2025-68131
HIGH
cbor2 <5.8.0 - Info Disclosure
CVSS 7.5
CVE-2025-61594
HIGH
URI <1.0.4 - Auth Bypass
CVSS 7.5
CVE-2025-14267
MEDIUM
M-Files Server <25.12.15491.7 - Info Disclosure
CVSS 4.9
CVE-2025-65000
MEDIUM
Checkmk <=2.4.0p18, <=2.3.0 - Info Disclosure
CVSS 5.3
CVE-2025-65965
Grype <0.104.1 - Info Disclosure
CVE-2025-62483
MEDIUM
Zoom Client <6.5.10 - Info Disclosure
CVSS 5.3
CVE-2025-64326
LOW
Weblate <5.14 - Info Disclosure
CVSS 2.6
CVE-2025-0011
LOW
AMD Crash Defender - Info Disclosure
CVSS 3.3
CVE-2025-58049
MEDIUM
XWiki Platform <16.4.8-17.4.0-rc-1 - Info Disclosure
CVSS 5.8
CVE-2025-57757
MEDIUM
Contao < 5.3.38 - Information Disclosure
CVSS 5.3
CVE-2025-1759
MEDIUM
IBM Concert Software <1.2 - Info Disclosure
CVSS 5.9
CVE-2025-33013
MEDIUM
IBM MQ Operator - Info Disclosure
CVSS 6.2
CVE-2025-53886
MEDIUM
Directus <11.9.0 - Info Disclosure
CVSS 4.5
CVE-2025-48708
MEDIUM
Artifex Ghostscript <10.05.1 - Info Disclosure
CVSS 4.0
CVE-2025-48066
MEDIUM
Wire-webapp - Info Disclosure
CVSS 6.0
CVE-2025-27221
LOW
URI gem <1.0.3 - Info Disclosure
CVSS 3.2
CVE-2025-20118
MEDIUM
Cisco APIC - Info Disclosure
CVSS 4.4
CVE-2025-24884
kube-audit-rest <1.0.16 - Info Disclosure
CVE-2024-8474
HIGH
OpenVPN Connect <3.5.0 - Info Disclosure
CVSS 7.5
CVE-2024-56353
MEDIUM
JetBrains TeamCity <2024.12 - Info Disclosure
CVSS 5.5
CVE-2024-41156
LOW
Tropos - Info Disclosure
CVSS 2.7
CVE-2024-49997
HIGH
Linux kernel - Info Disclosure
CVSS 7.5
Details
Vulnerabilities
98