Weaknesses of type CWE-200
3,955 resultsCVE-2025-52649LOWHCL AION is affected by a vulnerability where certain identifiers may be predictable in natureEPSS 0.1%CVE-2026-20619MEDIUMA logging issue was addressed with improved data redaction. This issue is fixed in macOS Sequoia 15.7.4, macOS Tahoe 26.3. An app may be ablEPSS 0.1%CVE-2026-4823LOWEnter Software Iperius Backup NTLM2 information disclosureEPSS 0.1%CVE-2026-45277LOWNextcloud: Information disclosure in Nextcloud Approval app via fileId parameter reveals workflow associationsEPSS 0.1%CVE-2025-48464MEDIUMExposure of Sensitive InformationEPSS 0.1%CVE-2025-50862MEDIUMThe Lotus Cars Android app (com.lotus.carsdomestic.intl) 1.2.8 has allowBackup=true set in its manifest, allowing data exfiltration via ADB EPSS 0.1%CVE-2026-46874LOWVulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The supported version that is affected is 7.EPSS 0.1%CVE-2026-49219MEDIUMImageMagick: Policy Bypass can read disallowed filesEPSS 0.1%CVE-2025-24090LOWA permissions issue was addressed with additional restrictions. This issue is fixed in iOS 18.3 and iPadOS 18.3. An app may be able to enumeEPSS 0.1%CVE-2026-20648MEDIUMA privacy issue was addressed by moving sensitive data to a protected location. This issue is fixed in macOS Tahoe 26.3. A malicious app mayEPSS 0.1%CVE-2026-20623MEDIUMA permissions issue was addressed by removing the vulnerable code. This issue is fixed in macOS Tahoe 26.3. An app may be able to access proEPSS 0.1%CVE-2025-20611MEDIUMExposure of sensitive information to an unauthorized actor for some Edge Orchestrator software for Intel(R) Tiber™ Edge Platform may allow aEPSS 0.1%CVE-2022-46825MEDIUMIn JetBrains IntelliJ IDEA before 2022.3 the built-in web server leaked information about open projects.EPSS 0.1%CVE-2021-25364MEDIUMA pendingIntent hijacking vulnerability in Secure Folder prior to SMR APR-2021 Release 1 allows unprivileged applications to access contact EPSS 0.1%CVE-2025-58061MEDIUMOpenEBS Local PV RawFile persistent volume data is world readableEPSS 0.1%CVE-2025-20290MEDIUMCisco NXOS Software Sensitive Log Information Disclosure VulnerabilityEPSS 0.1%CVE-2025-9381LOWFNKvision Y215 CCTV Camera wpa_supplicant.conf information disclosureEPSS 0.1%CVE-2026-22007LOWVulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: SecuritEPSS 0.1%CVE-2026-20678MEDIUMAn authorization issue was addressed with improved state management. This issue is fixed in iOS 18.7.5 and iPadOS 18.7.5, iOS 26.3 and iPadOEPSS 0.1%CVE-2024-38798MEDIUMUncleared password keystrokes in circular queue can lead to information disclosure or escalation of privilegeEPSS 0.1%