Weaknesses of type CWE-200

3,943 results
CVE-2026-9836LOWIBM DataStage Flow Designer application is affected by an information disclosure vulnerabilityEPSS 0.2%CVE-2023-23776MEDIUMAn exposure of sensitive information to an unauthorized actor [CWE-200] vulnerability in FortiAnalyzer versions 7.2.0 through 7.2.1, 7.0.0 tEPSS 0.2%CVE-2023-37939LOWAn exposure of sensitive information to an unauthorized actor vulnerability [CWE-200] in FortiClient for Windows 7.2.0, 7.0 all versions, 6.EPSS 0.2%CVE-2025-11406MEDIUMkaifangqian kaifangqian-base SysUserController.java getAllUsers information disclosureEPSS 0.2%CVE-2026-56079HIGHCapgo - Cross-Tenant Authorization Bypass via PostgREST Webhook AccessEPSS 0.2%CVE-2024-44158MEDIUMThis issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 17.7 and iPadOS 17.7, macOS Sequoia 15EPSS 0.2%CVE-2026-42878MEDIUMFacturaScripts: Unauthenticated phpinfo() Disclosure via Installer Endpoint in FacturaScriptsEPSS 0.2%CVE-2025-14591MEDIUMPII Leak Due to Change in EOR HandlingEPSS 0.2%CVE-2026-14062MEDIUMInappropriate implementation in Views in Google Chrome on ChromeOS prior to 150.0.7871.47 allowed an attacker who convinced a user to instalEPSS 0.2%CVE-2026-34244MEDIUMWeblate: SSRF via Project-Level Machinery ConfigurationEPSS 0.2%CVE-2022-46702MEDIUMThe issue was addressed with improved memory handling. This issue is fixed in iOS 16.2 and iPadOS 16.2. An app may be able to disclose kerneEPSS 0.2%CVE-2026-58036LOWUsers API leaks whether privileged users have their user groups disabled for lack of 2FAEPSS 0.2%CVE-2026-6756HIGHMitigation bypass in Firefox for AndroidEPSS 0.2%CVE-2021-25350LOWInformation Exposure vulnerability in Samsung Account prior to version 12.1.1.3 allows physically proximate attackers to access user informaEPSS 0.2%CVE-2022-23509HIGHWeave Gitops Run vulnerable to insecure communicationEPSS 0.2%CVE-2026-2589MEDIUMGreenshift – animation and page builder blocks <= 12.8.3 - Unauthenticated Sensitive Information Exposure via Settings BackupEPSS 0.2%CVE-2026-56282MEDIUMCapgo - Information Disclosure via Unauthenticated /replication EndpointEPSS 0.2%CVE-2026-9129CRITICALPath Traversal in Altium Enterprise Server Viewer StorageController Allows Arbitrary File ReadEPSS 0.2%CVE-2025-61764MEDIUMVulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core). Supported versions that are affected areEPSS 0.2%CVE-2025-24261MEDIUMThe issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5. An app mEPSS 0.2%