Falhas do tipo CWE-209

371 resultados
CVE-2024-53948MEDIUMApache Superset: Error verbosity exposes metadata in analytics databasesEPSS 0.8%CVE-2020-1717A flaw was found in Keycloak 7.0.1. A logged in user can do an account email enumeration attack.EPSS 0.8%CVE-2023-35009MEDIUMIBM Cognos Analytics information disclosureEPSS 0.8%CVE-2023-29193HIGHSpiceDB binding metrics port to untrusted networks and can leak command-line flagsEPSS 0.8%CVE-2021-31339A vulnerability has been identified in Mendix Excel Importer Module (All versions < V9.0.3). Uploading a manipulated XML File results in an EPSS 0.8%CVE-2022-22760MEDIUMWhen importing resources using Web Workers, error messages would distinguish the difference between <code>application/javascript</code> respEPSS 0.8%CVE-2023-40171CRITICALDispatch writes JWT tokens in error messageEPSS 0.8%CVE-2023-47703MEDIUMIBM Security Guardium Key Lifecycle Manager information disclosureEPSS 0.8%CVE-2018-19947MEDIUMThe vulnerability have been reported to affect earlier versions of Helpdesk. If exploited, this information exposure vulnerability could disEPSS 0.8%CVE-2023-26052LOWSaleor is vulnerable to unauthenticated information disclosure via Python exceptionsEPSS 0.8%CVE-2019-16768LOWInternal exception message exposure for login action in SyliusEPSS 0.7%CVE-2020-5026MEDIUMIBM Financial Transaction Manager for Digital Payments for Multi-Platform 3.2.0 through 3.2.7 could allow a remote attacker to obtain sensitEPSS 0.7%CVE-2018-17891Carestream Vue RIS, RIS Client Builds: Version 11.2 and prior running on a Windows 8.1 machine with IIS/7.5. When contacting a Carestream seEPSS 0.7%CVE-2022-34882CRITICALInformation Exposure Vulnerability in RAID Manager Storage Replication AdapterEPSS 0.7%CVE-2021-31341Uploading a table mapping using a manipulated XML file results in an exception that could expose information about the application-server anEPSS 0.7%CVE-2023-0655MEDIUMSonicWall Email Security contains a vulnerability that could permit a remote unauthenticated attacker access to an error page that includes EPSS 0.7%CVE-2023-42013MEDIUMIBM UrbanCode Deploy information disclosureEPSS 0.7%CVE-2023-43021MEDIUMIBM InfoSphere Information Server information disclosureEPSS 0.7%CVE-2022-31229CRITICALDell PowerScale OneFS, 8.2.x through 9.3.0.x, contain an error message with sensitive information. An administrator could potentially exploiEPSS 0.7%CVE-2022-22449MEDIUMIBM Security Verify Governance, Identity Manager information disclosureEPSS 0.7%