Falhas do tipo CWE-200

3.911 resultados
CVE-2023-43754MEDIUMPermalink previews displayed for posts in archived channels even if users are disallowed to view archived channelsEPSS 0.5%CVE-2020-1753MEDIUMA security flaw was found in Ansible Engine, all Ansible 2.7.x versions prior to 2.7.17, all Ansible 2.8.x versions prior to 2.8.11 and all EPSS 0.5%CVE-2026-40245HIGHFree5GC: UDR nudr-dr influenceData/subs-to-notify leaks SUPI in error response body without authenticationEPSS 0.5%CVE-2024-12637MEDIUMMoving Users <= 1.05 - Unauthenticated Sensitive Information ExposureEPSS 0.5%CVE-2023-27630MEDIUMWordPress Community by PeepSo plugin <= 6.0.9.0 - Server Information DisclosureEPSS 0.5%CVE-2026-42880CRITICALArgoCD ServerSideDiff is vulnerable to Kubernetes Secret ExtractionEPSS 0.5%CVE-2024-22270HIGHVMware Workstation and Fusion contain an information disclosure vulnerability in the Host Guest File Sharing (HGFS) functionality. A malicioEPSS 0.5%CVE-2024-22269HIGHVMware Workstation and Fusion contain an information disclosure vulnerability in the vbluetooth device. A malicious actor with local adminisEPSS 0.5%CVE-2025-7780MEDIUMAI Engine <= 2.9.4 - Missing URL Scheme Validation to Authenticated (Subscriber+) Arbitrary File Read via simpleTranscribeAudio and get_audio FunctionsEPSS 0.5%CVE-2024-23235HIGHA race condition was addressed with additional validation. This issue is fixed in iOS 16.7.6 and iPadOS 16.7.6, iOS 17.4 and iPadOS 17.4, maEPSS 0.5%CVE-2024-23649HIGHAny authenticated user may obtain private message details from other users on the same instanceEPSS 0.5%CVE-2022-30737MEDIUMImplicit Intent hijacking vulnerability in Samsung Account prior to version 13.2.00.6 allows attackers to get email ID.EPSS 0.5%CVE-2022-30733MEDIUMSensitive information exposure in Sign-in log in Samsung Account prior to version 13.2.00.6 allows attackers to get an user email or phone nEPSS 0.5%CVE-2022-30734MEDIUMSensitive information exposure in Sign-out log in Samsung Account prior to version 13.2.00.6 allows attackers to get an user email or phone EPSS 0.5%CVE-2025-30353HIGHDirectus's webhook trigger flows can leak sensitive dataEPSS 0.5%CVE-2025-55683MEDIUMWindows Kernel Information Disclosure VulnerabilityEPSS 0.5%CVE-2026-21524HIGHAzure Data Explorer Information Disclosure VulnerabilityEPSS 0.5%CVE-2022-41734MEDIUMIBM Maximo Asset Management information disclosureEPSS 0.5%CVE-2024-48789HIGHAn issue in INATRONIC com.inatronic.drivedeck.home 2.6.23 allows a remote attacker to obtain sensitve information via the firmware update prEPSS 0.5%CVE-2023-28857MEDIUMLDAP password leak in Apereo CAS - GHSL-2023-009EPSS 0.5%