Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-359

CWE-359

Exposure of Private Personal Information to an Unauthorized Actor

Parent: CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

The product does not properly prevent a person's private, personal information from being accessed by actors who either (1) are not explicitly authorized to access the information or (2) do not have the implicit consent of the person about whom the information is collected.

174 vulnerabilities with CWE-359

CVE-2022-41936 MEDIUM

XWiki Platform - Info Disclosure

CVE-2022-20942 MEDIUM

Cisco Asyncos < 14.2.1-015 - Incorrect Authorization

CVE-2022-2720 MEDIUM

Octopus Server - Info Disclosure

CVE-2022-36091 HIGH

XWiki Platform <14.2 - Info Disclosure

CVE-2022-0852 MEDIUM

Convert2rhel < 0.26 - Exposure to Wrong Actor

CVE-2022-2921 HIGH

Notrinoserp < 0.7 - Privilege Escalation

CVE-2022-35932 LOW

Nextcloud Talk <12.2.7, 13.0.7, 14.0.3 - Info Disclosure

CVE-2022-24890 LOW

Nextcloud Talk < 13.0.5 - Information Disclosure

CVE-2022-1365 MEDIUM

Cross-fetch < 3.1.5 - Incorrect Authorization

CVE-2022-24820 MEDIUM

Xwiki < 12.10.11 - Missing Authentication

CVE-2022-24819 MEDIUM

XWiki Platform - Info Disclosure

CVE-2022-0482 CRITICAL

GitHub alextselegidis/easyappointments <1.4.3 - Info Disclosure

CVE-2022-24719 LOW

Fluture-Node 4.0.0/1 - Info Disclosure

CVE-2022-0155 MEDIUM

follow-redirects - Info Disclosure

CVE-2021-46687 MEDIUM

JFrog Artifactory <7.31.10,6.23.38 - Info Disclosure

CVE-2021-36723 MEDIUM

Emuse - Eservices / Envoice - Information Disclosure

CVE-2021-3980 HIGH

elgg - Info Disclosure

CVE-2021-28559 MEDIUM

Acrobat Reader DC <2021.001.20150 - Info Disclosure

CVE-2021-21823 HIGH

Komoot < 11.1.11 - Information Disclosure

CVE-2021-22876 MEDIUM

curl <7.75.0 - Info Disclosure

CVE-2020-37173 HIGH

AVideo Platform 8.1 - Info Disclosure

CVE-2020-1688 MEDIUM

Juniper Networks SRX Series/NFX Series - Privilege Escalation

CVE-2019-15623 MEDIUM

Nextcloud Server 16.0.1 - Info Disclosure

CVE-2017-16769 MEDIUM

Synology Photo Station <6.8.1-3458 - Info Disclosure

Previous Page 7 of 7

Details

Vulnerabilities 174

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy