Falhas do tipo CWE-200

3.911 resultados
CVE-2023-23958MEDIUMSymantec Protection Engine Hash Leak VulnerabilityEPSS 0.5%CVE-2023-2025MEDIUMExposure of Sensitive Information in OpenBlue Enterprise Manager Data CollectorEPSS 0.5%CVE-2025-2277HIGHExposure of password in web-based SSH authentication component in Devolutions Server 2024.3.13 and earlier allows a user to unadvertently leEPSS 0.5%CVE-2025-27785HIGHApplio allows arbitrary file read in train.py export_index functionEPSS 0.5%CVE-2023-25500LOWPossible information disclosure in Vaadin 10.0.0 to 10.0.23, 11.0.0 to 14.10.1, 15.0.0 to 22.0.28, 23.0.0 to 23.3.13, 24.0.0 to 24.0.6, 24.1EPSS 0.5%CVE-2024-42435MEDIUMZoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers - Sensitive Information ExposureEPSS 0.5%CVE-2022-23504MEDIUMTYPO3 contains Sensitive Information Disclosure via YAML Placeholder Expressions in Site ConfigurationEPSS 0.5%CVE-2024-39822MEDIUMZoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers - Sensitive Information ExposureEPSS 0.5%CVE-2024-45739MEDIUMSensitive information disclosure in AdminManager logging channelEPSS 0.5%CVE-2022-31185MEDIUMEmail addresses are not hidden regardless of selected state in mprwebEPSS 0.5%CVE-2024-52513LOWNextcloud Server's Attachments folder for Text app is accessible on "Files drop" and "Password protected" sharesEPSS 0.5%CVE-2024-42019CRITICALA vulnerability that allows an attacker to access the NTLM hash of the Veeam Reporter Service service account. This attack requires user intEPSS 0.5%CVE-2026-33888MEDIUMApostropheCMS: publicApiProjection Bypass via `project` Query Builder in Piece-Type REST APIEPSS 0.5%CVE-2024-48796HIGHAn issue in EQUES com.eques.plug 1.0.1 allows a remote attacker to obtain sensitive information via the firmware update process.EPSS 0.5%CVE-2024-48797HIGHAn issue in PCS Engineering Preston Cinema (com.prestoncinema.app) 0.2.0 allows a remote attacker to obtain sensitive information via the fiEPSS 0.5%CVE-2024-48799HIGHAn issue in LOREX TECHNOLOGY INC com.lorexcorp.lorexping 1.4.22 allows a remote attacker to obtain sensitive information via the firmware upEPSS 0.5%CVE-2024-48798HIGHAn issue in Hubble Connected (com.hubbleconnected.vervelife) 2.00.81 allows a remote attacker to obtain sensitive information via the firmwaEPSS 0.5%CVE-2024-12434MEDIUMSureMembers <= 1.10.6 - Sensitive Information ExposureEPSS 0.5%CVE-2025-65717MEDIUMAn issue in Visual Studio Code Extensions Live Server v5.7.9 allows attackers to exfiltrate files via user interaction with a crafted HTML pEPSS 0.5%CVE-2024-51163HIGHA Local File Inclusion vulnerability in Vegam Solutions Vegam 4i versions 6.3.47.0 and earlier allows a remote attacker to obtain sensitive EPSS 0.5%