Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-497

CWE-497

Exposure of Sensitive System Information to an Unauthorized Control Sphere

Parent: CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

The product does not properly prevent sensitive system-level information from being accessed by unauthorized actors who do not have the same level of access to the underlying system as the product does.

333 vulnerabilities with CWE-497

CVE-2025-27369 MEDIUM

IBM OpenPages with Watson 8.3-9.0 - Info Disclosure

CVE-2025-24334 LOW

Nokia Single RAN <23R2-SR 1.0 MP - Info Disclosure

CVE-2025-53211 MEDIUM

Roland Beaussant Audio Editor & Recorder <2.2.3 - Info Disclosure

CVE-2025-6561 CRITICAL

Hunt Electronic Hybrid DVR - Info Disclosure

CVE-2025-49147 MEDIUM

Umbraco <10.8.10, <13.9.1 - Info Disclosure

CVE-2025-5416 LOW

Keycloak - Authenticated Sensitive Information Exposure via Admin Serverinfo Endpoint

CVE-2025-52719 MEDIUM

Metagauss ProfileGrid <5.9.5.2 - Info Disclosure

CVE-2025-4229 MEDIUM

Palo Alto Networks PAN-OS - Info Disclosure

CVE-2025-0036 LOW

AMD Versal Adaptive SoC - Memory Corruption

CVE-2025-31045 HIGH

elfsight Contact Form widget <2.3.1 - Info Disclosure

CVE-2025-5893 CRITICAL

Smart Parking Management System - Info Disclosure

CVE-2025-49419 MEDIUM

Foxit eSign for WordPress <2.0.3 - Info Disclosure

CVE-2025-23969 MEDIUM

whassan KI Live Video Conferences <5.5.15 - Info Disclosure

CVE-2025-24473 LOW

Fortinet FortiClient <7.2.1 - Info Disclosure

CVE-2025-2236 LOW

OpenText Advanced Authentication <6.5 - Info Disclosure

CVE-2025-30170 MEDIUM

ABB ASPECT-Enterprise, NEXUS Series, MATRIX Series <= 3.08.03 - Authenticated Exposure of Sensitive System Information

CVE-2025-4364 HIGH

Fleet Management System < February 6th, 2025 - Unauthenticated Exposure of Sensitive System Information

CVE-2025-39394 MEDIUM

Solid Plugins AnalyticsWP <2.1.2 - Info Disclosure

CVE-2025-32299 MEDIUM

Themovation QuickCal <1.0.15 - Info Disclosure

CVE-2025-31062 MEDIUM

redqteam Wishlist <2.1.0 - Info Disclosure

CVE-2025-48024 MEDIUM

BlueWave Checkmate <2.1 - Info Disclosure

CVE-2025-30011 MEDIUM

SAP Supplier Relationship Management - Info Disclosure

CVE-2025-46747 MEDIUM

User Management < unknown - Info Disclosure

CVE-2025-46718 LOW

sudo-rs < 0.2.6 - Unauthorized Sensitive Information Exposure via -U Flag

CVE-2025-46717 LOW

sudo-rs < 0.2.6 - Unauthorized Sensitive Information Exposure via sudo --list

Previous Page 8 of 14 Next

Details

Vulnerabilities 333

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy