Falhas do tipo CWE-200
3.905 resultadosCVE-2023-32082LOWetcd key name can be accessed via LeaseTimeToLive APIEPSS 0.7%CVE-2025-27736MEDIUMWindows Power Dependency Coordinator Information Disclosure VulnerabilityEPSS 0.7%CVE-2020-7262MEDIUMImproper Access Control vulnerability in ATDEPSS 0.7%CVE-2022-45103MEDIUM
Dell Unisphere for PowerMax vApp, VASA Provider vApp, and Solution Enabler vApp version 9.2.3.x contain an information disclosure vulnerabiEPSS 0.7%CVE-2021-20250—A flaw was found in wildfly. The JBoss EJB client has publicly accessible privileged actions which may lead to information disclosure on theEPSS 0.7%CVE-2023-1402—Moodle: course participation report shows roles the user should not seeEPSS 0.7%CVE-2026-4106MEDIUMHT Mega < 3.0.7 – Unauthenticated PII DisclosureEPSS 0.7%CVE-2023-28336—Moodle: teacher can access names of users they do not have permission to accessEPSS 0.7%CVE-2025-43189CRITICALThis issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7. A malicious app may EPSS 0.7%CVE-2023-50253CRITICALlaf logs leakEPSS 0.7%CVE-2023-5692MEDIUMWordPress Core <= 6.4.3 - Sensitive Information Exposure via redirect_guess_404_permalinkEPSS 0.7%CVE-2022-39030HIGHSmart eVision - Exposure of Sensitive Information to an Unauthorized Actor -2EPSS 0.7%CVE-2023-40691MEDIUMIBM Cloud Pak for Business Automation information disclosureEPSS 0.7%CVE-2026-24098MEDIUMApache Airflow: Assigning single DAG permission leaked all DAGs Import ErrorsEPSS 0.7%CVE-2021-24661—PostX Gutenberg Blocks Saved Templates Addon < 2.4.10 - Private Content DisclosureEPSS 0.7%CVE-2022-31162HIGHSlack Morphism for Rust before 0.41.0 can accidentally leak Slack OAuth client information in application debug logsEPSS 0.7%CVE-2024-0490MEDIUMHuaxia ERP getAllList information disclosureEPSS 0.7%CVE-2023-41321MEDIUMSensitive fields enumeration through API in GLPIEPSS 0.7%CVE-2024-3870MEDIUMContact Form 7 Database Addon – CFDB7 <= 1.2.6.8 - Unauthenticated Sensitive Information ExposureEPSS 0.7%CVE-2020-12518MEDIUMPhoenix Contact PLCnext Control Devices versions before 2021.0 LTS: An attacker can use the knowledge gained by reading the insufficiently protected sensitive information to plan further attacks.EPSS 0.7%