Falhas do tipo CWE-200

3.932 resultados
CVE-2024-53858MEDIUMRecursive repository cloning can leak authentication tokens to non-GitHub submodule hosts in the gh cliEPSS 0.3%CVE-2025-4281MEDIUMShenzhen Sixun Software Sixun Shanghui Group Business Management System LoadData information disclosureEPSS 0.3%CVE-2024-44336MEDIUMAn issue in AnkiDroid Android Application v2.17.6 allows attackers to retrieve internal files from the /data/data/com.ichi2.anki/ directory EPSS 0.3%CVE-2024-40775MEDIUMA downgrade issue was addressed with additional code-signing restrictions. This issue is fixed in macOS Monterey 12.7.6, macOS Sonoma 14.6, EPSS 0.3%CVE-2025-46332MEDIUMInformation Disclosure via Flags override linkEPSS 0.3%CVE-2024-38290MEDIUMIn XIQ-SE before 24.2.11, a server misconfiguration may allow user enumeration when specific conditions are met.EPSS 0.3%CVE-2026-0411MEDIUMA Sensitive Information Disclosure Vulnerability in NETGEAR Orbi SatellitesEPSS 0.3%CVE-2024-32051MEDIUMInsertion of sensitive information into log file issue exists in RoamWiFi R10 prior to 4.8.45. If this vulnerability is exploited, a networkEPSS 0.3%CVE-2023-5551LOWMoodle: forum summary report shows students from other groups when in separate groups modeEPSS 0.3%CVE-2025-8039HIGHSearch terms persisted in URL barEPSS 0.3%CVE-2024-20490MEDIUMCisco Nexus Dashboard Fabric Controller and Nexus Dashboard Orchestrator Information Disclosure VulnerabilityEPSS 0.3%CVE-2024-20491MEDIUMCisco Nexus Dashboard Insights Information Disclosure VulnerabilityEPSS 0.3%CVE-2026-48855LOWSFTP READLINK Leaks Absolute Backend Filesystem Path When Root Is ConfiguredEPSS 0.3%CVE-2026-40584MEDIUMRansomLook - Improper Filtering of Private Location Entries in API Endpoints Leads to Information ExposureEPSS 0.3%CVE-2025-60739CRITICALCross Site Request Forgery (CSRF) vulnerability in Ilevia EVE X1 Server Firmware Version v4.7.18.0.eden and before, Logic Version v6.00 - 20EPSS 0.3%CVE-2026-44738HIGHGrav: Twig sandbox allows editor-role users to exfiltrate all plugin secrets via Config::toArray()EPSS 0.3%CVE-2021-25464LOWAn improper file management vulnerability in SamsungCapture prior to version 4.8.02 allows sensitive information leak.EPSS 0.3%CVE-2024-49734HIGHIn multiple functions of ConnectivityService.java, there is a possible way for a Wi-Fi AP to determine what site a device has connected to tEPSS 0.3%CVE-2024-48011LOWDell PowerProtect DD, versions prior to 7.7.5.50, contains an Exposure of Sensitive Information to an Unauthorized Actor vulnerability. A loEPSS 0.3%CVE-2025-24164MEDIUMA logic issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5. An aEPSS 0.3%