Fallos del tipo CWE-200
3890 resultadosCVE-2017-7510—In ovirt-engine 4.1, if a host was provisioned with cloud-init, the root password could be revealed through the REST interface.EPSS 1.0%CVE-2019-15592—GitLab 12.2.2 and below contains a security vulnerability that allows a guest user in a private project to see the merge request ID associatEPSS 1.0%CVE-2023-0994HIGHExposure of Sensitive Information to an Unauthorized Actor in francoisjacquet/rosariosisEPSS 1.0%CVE-2025-4904MEDIUMD-Link DI-7003GV2 webgl.data sub_41F0FC information disclosureEPSS 1.0%CVE-2023-38344—An issue was discovered in Ivanti Endpoint Manager before 2022 SU4. A file disclosure vulnerability exists in the GetFileContents SOAP actioEPSS 1.0%CVE-2019-15579—An information disclosure exists in < 12.3.2, < 12.2.6, and < 12.1.12 for GitLab Community Edition (CE) and Enterprise Edition (EE) where thEPSS 1.0%CVE-2024-45811MEDIUMserver.fs.deny bypassed when using ?import&raw in viteEPSS 1.0%CVE-2018-25081HIGHBitwarden through 2023.2.1 offers password auto-fill within a cross-domain IFRAME element. NOTE: the vendor's position is that there have beEPSS 1.0%CVE-2021-43938HIGHElcomplus SmartPTT SCADA Server Information ExposureEPSS 1.0%CVE-2023-26054MEDIUMCredentials inlined to Git URLs could end up in provenance attestation in BuildKitEPSS 1.0%CVE-2019-18333—A vulnerability has been identified in SPPA-T3000 Application Server (All versions < Service Pack R8.2 SP2). An attacker with network accessEPSS 1.0%CVE-2019-18331—A vulnerability has been identified in SPPA-T3000 Application Server (All versions < Service Pack R8.2 SP2). An attacker with network accessEPSS 1.0%CVE-2026-29066MEDIUMArbitrary File Read via Disabled Vite Filesystem Restriction in TinaCMS CLIEPSS 1.0%CVE-2019-18334—A vulnerability has been identified in SPPA-T3000 Application Server (All versions < Service Pack R8.2 SP2). An attacker with network accessEPSS 1.0%CVE-2019-18335—A vulnerability has been identified in SPPA-T3000 Application Server (All versions < Service Pack R8.2 SP2). An attacker with network accessEPSS 1.0%CVE-2025-43362CRITICALThe issue was addressed with improved checks. This issue is fixed in iOS 18.7 and iPadOS 18.7, iOS 26 and iPadOS 26. An app may be able to mEPSS 1.0%CVE-2019-3868LOWKeycloak up to version 6.0.0 allows the end user token (access or id token JWT) to be used as the session cookie for browser sessions for OIEPSS 1.0%CVE-2025-47966CRITICALPower Automate Elevation of Privilege VulnerabilityEPSS 1.0%CVE-2021-39223MEDIUMFile path disclosure of shared files in Richdocuments applicationEPSS 1.0%CVE-2019-15578—An information disclosure exists in < 12.3.2, < 12.2.6, and < 12.1.12 for GitLab Community Edition (CE) and Enterprise Edition (EE). The patEPSS 1.0%