Falhas do tipo CWE-200

3.909 resultados
CVE-2022-4054MEDIUMAn issue has been discovered in GitLab affecting all versions starting from 9.3 before 15.4.6, all versions starting from 15.5 before 15.5.5EPSS 0.7%CVE-2023-34236HIGHInformation Disclosure Vulnerability in Weave GitOps Terraform ControllerEPSS 0.7%CVE-2025-27675CRITICALVasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application 20.0.1923 allows Vulnerable OpenID Implementation V-EPSS 0.7%CVE-2022-46081HIGHIn Garmin Connect 4.61, terminating a LiveTrack session wouldn't prevent the LiveTrack API from continued exposure of private personal inforEPSS 0.7%CVE-2023-41260Best Practical Request Tracker (RT) before 4.4.7 and 5.x before 5.0.5 allows Information Exposure in responses to mail-gateway REST API callEPSS 0.7%CVE-2023-3553MEDIUMExposure of Sensitive Information to an Unauthorized Actor in nilsteampassnet/teampassEPSS 0.7%CVE-2021-44172LOWAn exposure of sensitive information to an unauthorized actor vulnerability [CWE-200] in FortiClientEMS versions 7.0.0 through 7.0.4, 7.0.6 EPSS 0.7%CVE-2022-40194MEDIUMWordPress Customer Reviews for WooCommerce plugin <= 5.3.5 - Sensitive Information Disclosure vulnerabilityEPSS 0.7%CVE-2023-0658MEDIUMMultilaser RE057/RE170 Backup File param.file.tgz information disclosureEPSS 0.7%CVE-2026-22016HIGHVulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JAXP). EPSS 0.7%CVE-2026-21515CRITICALAzure IoT Central Elevation of Privilege VulnerabilityEPSS 0.7%CVE-2024-22022HIGHVulnerability CVE-2024-22022 allows a Veeam Recovery Orchestrator user that has been assigned a low-privileged role to access the NTLM hash EPSS 0.7%CVE-2022-3870MEDIUMAn issue has been discovered in GitLab CE/EE affecting all versions starting from 10.0 before 15.5.7, all versions starting from 15.6 beforeEPSS 0.7%CVE-2024-35178HIGHJupyter server on Windows discloses Windows user password hashEPSS 0.7%CVE-2025-21214MEDIUMWindows BitLocker Information Disclosure VulnerabilityEPSS 0.7%CVE-2024-7328MEDIUMYouDianCMS information disclosureEPSS 0.7%CVE-2021-23204HIGHExposure of Sensitive Information to an Unauthorized Actor vulnerability in Gallagher Command Centre Server allows OSDP key material to be eEPSS 0.7%CVE-2024-52508HIGHNextcloud Mail auto configurator can be tricked into sending account information to wrong serversEPSS 0.7%CVE-2024-35230MEDIUMWelcome and About GeoServer pages communicate version and revision informationEPSS 0.7%CVE-2021-25652MEDIUMAvaya Aura Appliance Virtualization Platform Utilities Sensitive Information Disclosure VulnerabilityEPSS 0.7%