Weaknesses of type CWE-200
3,880 resultsCVE-2017-2606MEDIUMJenkins before versions 2.44, 2.32.2 is vulnerable to an information exposure in the internal API that allows access to item names that shouEPSS 1.9%CVE-2021-41767—Private tunnel identifier may be included in the non-private details of active connectionsEPSS 1.9%CVE-2020-12802—remote graphics contained in docx format retrieved in 'stealth mode'EPSS 1.9%CVE-2021-41301CRITICALECOA BAS controller - Exposure of Sensitive Information to an Unauthorized ActorEPSS 1.9%CVE-2017-12169—It was found that FreeIPA 4.2.0 and later could disclose password hashes to users having the 'System: Read Stage Users' permission. A remoteEPSS 1.9%CVE-2024-30569HIGHAn information leak in currentsetting.htm of Netgear R6850 v1.1.0.88 allows attackers to obtain sensitive information without any authenticaEPSS 1.9%CVE-2019-0040MEDIUMJunos OS: Specially crafted packets sent to port 111 on any interface triggers responses from the management interfaceEPSS 1.9%CVE-2025-22828MEDIUMApache CloudStack: Unauthorised access to annotationsEPSS 1.9%CVE-2019-5463—An authorization issue was discovered in the GitLab CE/EE CI badge images endpoint which could result in disclosure of the build status. ThiEPSS 1.9%CVE-2023-36763HIGHMicrosoft Outlook Information Disclosure VulnerabilityEPSS 1.9%CVE-2024-55875CRITICALhttp4k has a potential XXE (XML External Entity Injection) vulnerabilityEPSS 1.9%CVE-2023-39337—A security vulnerability in EPMM Versions 11.10, 11.9 and 11.8 older allows a threat actor with knowledge of an enrolled device identifier tEPSS 1.9%CVE-2022-47184HIGHApache Traffic Server: The TRACE method can be use to disclose network informationEPSS 1.9%CVE-2021-22892—An information disclosure vulnerability exists in the Rocket.Chat server fixed v3.13, v3.12.2 & v3.11.3 that allowed email addresses to be dEPSS 1.9%CVE-2021-3426MEDIUMThere's a flaw in Python 3's pydoc. A local or adjacent attacker who discovers or is able to convince another local or adjacent user to starEPSS 1.9%CVE-2024-38020MEDIUMMicrosoft Outlook Spoofing VulnerabilityEPSS 1.9%CVE-2022-29165CRITICALArgo CD will blindly trust JWT claims if anonymous access is enabledEPSS 1.9%CVE-2024-8461MEDIUMD-Link DNS-320 Web Management Interface discovery.cgi information disclosureEPSS 1.9%CVE-2020-3498MEDIUMCisco Jabber for Windows Information Disclosure VulnerabilityEPSS 1.9%CVE-2019-15576—An information disclosure vulnerability exists in GitLab CE/EE <v12.3.2, <v12.2.6, and <v12.1.12 that allowed an attacker to view private syEPSS 1.9%