CWE-552
Files or Directories Accessible to External Parties
The product makes files or directories accessible to unauthorized actors, even though they should not be.
453 vulnerabilities with CWE-552
CVE-2025-9273
MEDIUM
CData API Server - Info Disclosure
CVSS 4.3
CVE-2025-52460
MEDIUM
SS1 <16.0.0.10 - Info Disclosure
CVSS 5.3
CVE-2025-43758
MEDIUM
Liferay Portal/DXP - Info Disclosure
CVSS 5.3
CVE-2025-51818
MEDIUM
MCCMS 2.7.0 - Privilege Escalation
CVSS 5.4
CVE-2025-43749
MEDIUM
Liferay Portal/DXP - Info Disclosure
CVSS 5.3
CVE-2025-44779
MEDIUM
Ollama <0.1.33 - Code Injection
CVSS 6.6
CVE-2025-23276
HIGH
NVIDIA Installer - Privilege Escalation
CVSS 7.8
CVE-2025-30103
MEDIUM
Dell SmartFabric OS10 <10.6.0.5 - Info Disclosure
CVSS 5.5
CVE-2025-34139
HIGH
Sitecore - Info Disclosure
CVE-2025-41240
CRITICAL
Bitnami Helm charts - Info Disclosure
CVSS 10.0
CVE-2025-34110
CRITICAL
ColoradoFTP Server < 1.3 Build 8 - Path Traversal
CVE-2025-53536
HIGH
Roo Code <3.22.6 - Command Injection
CVSS 8.1
CVE-2025-49797
HIGH
Brother - Privilege Escalation
CVSS 7.8
CVE-2025-0620
MEDIUM
Samba - Info Disclosure
CVSS 4.9
CVE-2025-40908
CRITICAL
YAML-LibYAML <0.903.0 - Code Injection
CVSS 9.1
CVE-2025-4634
MEDIUM
Airpointer <2.4.107-2 - Local File Inclusion
CVSS 4.1
CVE-2025-5273
MEDIUM
mcp-markdownify-server - Info Disclosure
CVSS 6.5
CVE-2025-48928
MEDIUM
KEV
TeleMessage <2025-05-05 - Info Disclosure
CVSS 4.0
CVE-2025-4134
HIGH
Avast Business Antivirus for Linux <4.5 - Info Disclosure
CVSS 7.3
CVE-2025-45529
HIGH
SSCMS 7.3.1 - Info Disclosure
CVSS 7.1
CVE-2025-4909
HIGH
SourceCodester Client DBMS 1.0 - Info Disclosure
CVSS 7.3
CVE-2025-4807
MEDIUM
SourceCodester Online Student Clearance System 1.0 - Info Disclosure
CVSS 5.3
CVE-2025-21264
HIGH
Visual Studio Code - Info Disclosure
CVSS 7.1
CVE-2025-32819
HIGH
Sonicwall Sma 100 Firmware < 10.2.1.15-81sv - Path Traversal
CVSS 8.8
CVE-2025-1982
HIGH
Ready's Attachment Upload - Path Traversal
Details
Vulnerabilities
453