Weaknesses of type CWE-200

3,953 results
CVE-2026-14049MEDIUMInappropriate implementation in GPU in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer proceEPSS 0.2%CVE-2025-54548MEDIUMOn affected platforms, restricted users could view sensitive portions of the config database via a debug API (e.g., user password hashes)EPSS 0.2%CVE-2026-46830MEDIUMVulnerability in Oracle REST Data Services (component: Mongoapi). Supported versions that are affected are 24.2.0-26.1.0. Easily exploitablEPSS 0.2%CVE-2026-56218MEDIUMCapgo - EXIF Metadata Exposure via Image UploadEPSS 0.2%CVE-2026-50009MEDIUMNetty QUIC stateless reset token material exposed through header-visible connection IDsEPSS 0.2%CVE-2022-25826LOWInformation Exposure vulnerability in Galaxy S3 Plugin prior to version 2.2.03.22012751 allows attacker to access password information of coEPSS 0.2%CVE-2022-25830LOWInformation Exposure vulnerability in Galaxy Watch3 Plugin prior to version 2.2.09.22012751 allows attacker to access password information oEPSS 0.2%CVE-2026-45085MEDIUMDiscourse: Chat misauthorization and information disclosureEPSS 0.2%CVE-2022-30742LOWSensitive information exposure vulnerability in FmmExtraOperation of Find My Mobile prior to 7.2.24.12 allows local attackers with log accesEPSS 0.2%CVE-2022-30741LOWSensitive information exposure vulnerability in SimChangeAlertManger of Find My Mobile prior to 7.2.24.12 allows local attackers with log acEPSS 0.2%CVE-2022-25828LOWInformation Exposure vulnerability in Watch Active Plugin prior to version 2.2.07.22012751 allows attacker to access password information ofEPSS 0.2%CVE-2022-25829LOWInformation Exposure vulnerability in Watch Active2 Plugin prior to version 2.2.08.22012751 allows attacker to access password information oEPSS 0.2%CVE-2022-25827LOWInformation Exposure vulnerability in Galaxy Watch Plugin prior to version 2.2.05.22012751 allows attacker to access password information ofEPSS 0.2%CVE-2022-25823LOWInformation Exposure vulnerability in Galaxy Watch Plugin prior to version 2.2.05.220126741 allows attackers to access user information in lEPSS 0.2%CVE-2022-1662In convert2rhel, there's an ansible playbook named ansible/run-convert2rhel.yml which passes the Red Hat Subscription Manager user password EPSS 0.2%CVE-2025-43367MEDIUMA privacy issue was addressed by moving sensitive data. This issue is fixed in macOS Sonoma 14.8, macOS Tahoe 26. An app may be able to acceEPSS 0.2%CVE-2024-56443MEDIUMCross-process screen stack vulnerability in the UIExtension module Impact: Successful exploitation of this vulnerability may affect service EPSS 0.2%CVE-2024-8612LOWQemu-kvm: information leak in virtio devicesEPSS 0.2%CVE-2023-44098HIGHVulnerability of missing encryption in the card management module. Successful exploitation of this vulnerability may affect service confidenEPSS 0.2%CVE-2025-55276LOWHCL Aftermarket DPC is affected by Internal IP Disclosure vulnerabilityEPSS 0.2%