Fallos del tipo CWE-200

3910 resultados
CVE-2021-23193HIGHImproper privilege validation vulnerability in COM Interface of Gallagher Command Centre Server allows authenticated unprivileged operators EPSS 0.7%CVE-2019-25210CRITICALAn issue was discovered in Cloud Native Computing Foundation (CNCF) Helm through 3.13.3. It displays values of secrets when the --dry-run flEPSS 0.7%CVE-2023-35750HIGHD-Link DAP-2622 DDP Get SSID List WPA PSK Information Disclosure VulnerabilityEPSS 0.7%CVE-2022-47411CRITICALAn issue was discovered in the fp_newsletter (aka Newsletter subscriber management) extension before 1.1.1, 1.2.0, 2.x before 2.1.2, 2.2.1 tEPSS 0.7%CVE-2022-47410CRITICALAn issue was discovered in the fp_newsletter (aka Newsletter subscriber management) extension before 1.1.1, 1.2.0, 2.x before 2.1.2, 2.2.1 tEPSS 0.7%CVE-2024-3160MEDIUMIntelbras HDCVI 1016 HTTP GET Request cap.js information disclosureEPSS 0.7%CVE-2021-20018A post-authenticated vulnerability in SonicWall SMA100 allows an attacker to export the configuration file to the specified email address. TEPSS 0.7%CVE-2022-34329MEDIUMIBM CICS TX information disclosureEPSS 0.7%CVE-2022-24762MEDIUMExposure of Sensitive Information to an Unauthorized Actor in sysend.jsEPSS 0.7%CVE-2021-37867MEDIUMEmails of all users are exposed via one of the Boards APIsEPSS 0.7%CVE-2022-3284MEDIUMInsecure way of passing a download keyEPSS 0.7%CVE-2023-39951MEDIUMInstrumentation for AWS SDK v2 captures email content when using Amazon Simple Email Service (SES) v1 API, exposing that content to the telemetry backendEPSS 0.7%CVE-2022-42439MEDIUMIBM App Connect Enterprise information disclosureEPSS 0.7%CVE-2023-23620MEDIUMDiscourse restricted tag routes leak topic informationEPSS 0.7%CVE-2024-23962MEDIUMAlpine Halo9 Missing AuthenticationEPSS 0.7%CVE-2023-22586HIGHLocal File Inclusion in Danfoss AK-EM100EPSS 0.7%CVE-2025-13920MEDIUMWP Directory Kit <= 1.4.9 - Unauthenticated Email Exposure via wdk_public_actionEPSS 0.7%CVE-2020-36660MEDIUMpaxswill EVE Ship Replacement Program User Information api.py information disclosureEPSS 0.7%CVE-2020-1902A user running a quick search on a highly forwarded message on WhatsApp for Android from v2.20.108 to v2.20.140 or WhatsApp Business for AndEPSS 0.7%CVE-2022-32218MEDIUMAn information disclosure vulnerability exists in Rocket.Chat <v5, <v4.8.2 and <v4.7.5 due to the actionLinkHandler method was found to alloEPSS 0.7%