Weaknesses of type CWE-200
3,955 resultsCVE-2025-43479MEDIUMA permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.7.2, macOS Sonoma 14.8.2, macOS TahoEPSS 0.2%CVE-2026-44782MEDIUMDiscourse: GroupPostSerializer leaks hidden full names through reaction post associationEPSS 0.2%CVE-2023-40368MEDIUMIBM Storage Protect information disclosureEPSS 0.2%CVE-2024-32670HIGHExposure of Sensitive Information to an Unauthorized Actor in Samsung Galaxy SmartTag2 prior to 0.20.04 allows attackes to potentially identEPSS 0.2%CVE-2026-44780MEDIUMDiscourse: Category queue reviewers can read raw incoming emails from queued postsEPSS 0.2%CVE-2026-44785MEDIUMDiscourse: Hidden reply-to post raw can be disclosed through AI explain promptsEPSS 0.2%CVE-2026-24870LOWInformation disclosure in ixray-1.6-stcopEPSS 0.2%CVE-2024-20914LOWVulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems (component: Core). The supported version that is affected EPSS 0.2%CVE-2025-5281MEDIUMInappropriate implementation in BFCache in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to potentially obtain user informaEPSS 0.2%CVE-2025-31127MEDIUMElement X Android allows the entity in control of the well-known file to break the confidentiality embedded Element CallEPSS 0.2%CVE-2024-22331MEDIUMIBM UrbanCode Deploy information disclosureEPSS 0.2%CVE-2025-43391MEDIUMA privacy issue was addressed with improved handling of temporary files. This issue is fixed in iOS 26.1 and iPadOS 26.1, macOS Sequoia 15.7EPSS 0.2%CVE-2024-8097MEDIUMSensitive information exposure when the org.glassfish.admingui LOGGER is set to FINEST levelEPSS 0.2%CVE-2023-41745MEDIUMSensitive information disclosure due to excessive collection of system information. The following products are affected: Acronis Agent (LinuEPSS 0.2%CVE-2023-1055—A flaw was found in RHDS 11 and RHDS 12. While browsing entries LDAP tries to decode the userPassword attribute instead of the userCertificaEPSS 0.2%CVE-2025-31126MEDIUMElement X iOS allows the entity in control of the well-known file to break the confidentiality of embedded Element CallEPSS 0.2%CVE-2025-12559MEDIUMInformation Disclosure in Common Teams APIEPSS 0.2%CVE-2025-31242MEDIUMA privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in iOS 18.5 and iPadOS 18.5, iPadOS EPSS 0.2%CVE-2026-11162MEDIUMInappropriate implementation in CSS in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafteEPSS 0.2%CVE-2022-42266MEDIUMNVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape, where an uEPSS 0.2%