Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-497

CWE-497

Exposure of Sensitive System Information to an Unauthorized Control Sphere

Parent: CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

The product does not properly prevent sensitive system-level information from being accessed by unauthorized actors who do not have the same level of access to the underlying system as the product does.

311 vulnerabilities with CWE-497

CVE-2024-49252 MEDIUM

Leyka <3.31.6 - Info Disclosure

CVE-2024-9470 MEDIUM

Cortex XSOAR - Info Disclosure

CVE-2024-6389 MEDIUM

GitLab-CE/EE <17.1.7, <17.2.5, <17.3.2 - Info Disclosure

CVE-2024-8687 HIGH

Palo Alto Networks PAN-OS - Info Disclosure

CVE-2024-39740 MEDIUM

IBM Datacap Navigator <9.1.10 - Info Disclosure

CVE-2024-39675 HIGH

RUGGEDCOM <V4.3.10 - Path Traversal

CVE-2024-31223 MEDIUM

Fides <2.39.2rc0 - Info Disclosure

CVE-2024-5735 HIGH

AdmirorFrames <5.0 - Info Disclosure

CVE-2024-6388 MEDIUM

Ubuntu Advantage Desktop Daemon <1.12 - Info Disclosure

CVE-2024-4008 CRITICAL

ABB, Busch-Jaeger, FTS Display <1.00 & BCU <1.3.0.33 - RCE

CVE-2024-36070 HIGH

tine <2023.11.8 - Info Disclosure

CVE-2024-1809 MEDIUM

Analytify - Google Analytics Dashboard < 5.2.4 - Missing Authorization

CVE-2024-31887 HIGH

IBM Security Verify Privilege <11.6.25 - Info Disclosure

CVE-2024-3774 MEDIUM

Aenrich A+hrd - Missing Authentication

CVE-2024-31419 MEDIUM

OpenShift Virtualization - Info Disclosure

CVE-2024-0053 LOW

Google Android - Information Disclosure

CVE-2024-25634 HIGH

alf.io <2.0-Mr-2402 - Info Disclosure

CVE-2024-22125 HIGH

Microsoft Edge <1.0 - Info Disclosure

CVE-2024-22124 MEDIUM

SAP - Info Disclosure

CVE-2023-37525 MEDIUM

Hcltech Bigfix Compliance - Information Disclosure

CVE-2023-23472 LOW

IBM InfoSphere DataStage Flow Designer - Info Disclosure

CVE-2023-42010 LOW

IBM Sterling B2B Integrator <6.1.2.5, <6.2.0.2 - Info Disclosure

CVE-2023-50180 MEDIUM

FortiADC <7.4.1 - Info Disclosure

CVE-2023-4605 MEDIUM

Lenovo XClarity Administrator - Info Disclosure

CVE-2023-50959 MEDIUM

IBM Cloud Pak for Business Automation <23.0.2 - Info Disclosure

Previous Page 11 of 13 Next

Details

Vulnerabilities 311

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy