Fallos del tipo CWE-200

3942 resultados
CVE-2025-4526MEDIUMDígitro NGC Explorer Configuration missing password field maskingEPSS 0.2%CVE-2025-12732MEDIUMWP Import – Ultimate CSV XML Importer for WordPress <= 7.33 - Missing Authorization to Authenticated (Author+) Sensitive Information ExposureEPSS 0.2%CVE-2026-44784MEDIUMDiscourse: Non-staff group owners can see email password in plaintext through group historyEPSS 0.2%CVE-2024-54463MEDIUMThis issue was addressed with improved entitlements. This issue is fixed in macOS Sequoia 15. An app may be able to access removable volumesEPSS 0.2%CVE-2025-12540MEDIUMShareThis Dashboard for Google Analytics <= 3.2.4 - Unauthenticated Google Analytics Data ExposureEPSS 0.2%CVE-2026-36611HIGHMercusys AC12G (EU) V1 with firmware AC12G(EU)_V1_200909 returns 128 bytes of uninitialized buffer when receiving POST requests without SOAPEPSS 0.2%CVE-2021-25432Information exposure vulnerability in Samsung Members prior to versions 2.4.85.11 in Android O(8.1) and below, and 3.9.10.11 in Android P(9.EPSS 0.2%CVE-2025-13804MEDIUMnutzam NutzBoot Ethereum Wallet EthModule.java information disclosureEPSS 0.2%CVE-2024-44129MEDIUMThe issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15, macOS Ventura 13.7. An app may be able to leak sensitEPSS 0.2%CVE-2024-39527MEDIUMJunos OS: SRX Series: Low privileged user able to access sensitive information on file systemEPSS 0.2%CVE-2021-32002MEDIUMSiteManager troubleshooter allows access without authentication from local networkEPSS 0.2%CVE-2026-20682MEDIUMA logic issue was addressed with improved state management. This issue is fixed in iOS 18.7.5 and iPadOS 18.7.5, iOS 26.3 and iPadOS 26.3. AEPSS 0.2%CVE-2023-23511The issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.6.3, macOS Ventura 13.2, iOS 16.3 and iPadOSEPSS 0.2%CVE-2026-11271MEDIUMInappropriate implementation in Passwords in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage iEPSS 0.2%CVE-2026-11203MEDIUMInappropriate implementation in GPU in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via aEPSS 0.2%CVE-2025-65957HIGHCore Bot is Leaking Sensitive Credentials in Logs, Errors, and MessagesEPSS 0.2%CVE-2026-11209MEDIUMInappropriate implementation in Passwords in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the rendererEPSS 0.2%CVE-2024-40838LOWA privacy issue was addressed by moving sensitive data to a protected location. This issue is fixed in macOS Sequoia 15. A malicious app mayEPSS 0.2%CVE-2022-23157MEDIUMWyse Device Agent version 14.6.1.4 and below contain a sensitive data exposure vulnerability. A authenticated malicious user could potentialEPSS 0.2%CVE-2026-14098MEDIUMInappropriate implementation in CSS in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafteEPSS 0.2%