Weaknesses of type CWE-200
3,958 resultsCVE-2023-40108MEDIUMIn multiple locations, there is a possible way to access media content belonging to another user due to a missing permission check. This couEPSS 0.1%CVE-2022-39903MEDIUMImproper access control vulnerability in RCS call prior to SMR Dec-2022 Release 1 allows local attackers to access RCS incoming call number.EPSS 0.1%CVE-2025-68966MEDIUMPermission control vulnerability in the Notepad module.
Impact: Successful exploitation of this vulnerability may affect service confidentiaEPSS 0.1%CVE-2022-42766MEDIUMIn wlan driver, there is a possible missing permission check, This could lead to local information disclosure.EPSS 0.1%CVE-2022-39913MEDIUMExposure of Sensitive Information to an Unauthorized Actor in Persona Manager prior to Android T(13) allows local attacker to access user prEPSS 0.1%CVE-2024-49733MEDIUMIn reload of ServiceListing.java , there is a possible way to allow a malicious app to hide an NLS from Settings due to a logic error in theEPSS 0.1%CVE-2025-63729CRITICALAn issue was discovered in Syrotech SY-GPON-1110-WDONT SYRO_3.7L_3.1.02-240517 allowing attackers to exctract the SSL Private Key, CA CertifEPSS 0.1%CVE-2025-68965MEDIUMPermission control vulnerability in the Notepad module.
Impact: Successful exploitation of this vulnerability may affect service confidentiaEPSS 0.1%CVE-2025-66330MEDIUMApp lock verification bypass vulnerability in the file management app. Impact: Successful exploitation of this vulnerability may affect servEPSS 0.1%CVE-2026-41520HIGHCillium exposes sensitive information included in the cilium-bugtool debug archiveEPSS 0.1%CVE-2025-64311MEDIUMPermission control vulnerability in the Notepad module.
Impact: Successful exploitation of this vulnerability may affect service confidentiaEPSS 0.1%CVE-2025-47369MEDIUMInformation Exposure in Computer VisionEPSS 0.1%CVE-2025-58279MEDIUMPermission control vulnerability in the media library module. Impact: Successful exploitation of this vulnerability may affect service confiEPSS 0.1%CVE-2022-33724LOWExposure of Sensitive Information in Samsung Dialer application?prior to SMR Aug-2022 Release 1 allows local attackers to access ICCID via lEPSS 0.1%CVE-2025-15065HIGHData Exposure in Kings Information & Network KESS EnterpriseEPSS 0.0%CVE-2026-56303HIGHCapgo - Unauthenticated API Key Metadata Disclosure via SECURITY DEFINER RPC FunctionEPSS —CVE-2026-61454HIGHGrav before 2.0.4 Information Disclosure via __GRAV_CONFIG__EPSS —CVE-2026-61426HIGHPraisonAI before 1.7.3 Unauthenticated Agent Access via Insecure DefaultsEPSS —