Fallos del tipo CWE-200

3920 resultados
CVE-2023-31416MEDIUMElastic Cloud on Kubernetes (ECK) secret token configuration issueEPSS 0.4%CVE-2024-25119MEDIUMInformation Disclosure of Encryption Key in TYPO3 Install ToolEPSS 0.4%CVE-2026-34579MEDIUMMantisBT has an authorization bypass via private issue monitoringEPSS 0.4%CVE-2024-51769HIGHAn information disclosure vulnerability exists in HPE AutoPass License Server (APLS) prior to 9.17.EPSS 0.4%CVE-2024-22260MEDIUMVMware Workspace One UEM update addresses an information exposure vulnerability.  A malicious actor with network access to the Workspace OneEPSS 0.4%CVE-2025-2252MEDIUMEasy Digital Downloads – eCommerce Payments and Subscriptions made easy <= 3.3.6.1 - Unauthenticated Private Post Title DisclosureEPSS 0.4%CVE-2024-13042MEDIUMTsinghua Unigroup Electronic Archives Management System download.html download information disclosureEPSS 0.4%CVE-2026-34744MEDIUMMantisBT authorization bypass allows continued access to self-uploaded attachments on private issuesEPSS 0.4%CVE-2025-62720HIGHLinkAce: Data Exfiltration via Export Functions Allow Access to All Users' Private LinksEPSS 0.4%CVE-2025-26310MEDIUMMultiple memory leaks have been identified in the ABC file parsing functions (parseABC_CONSTANT_POOL and `parseABC_FILE) in util/parser.c ofEPSS 0.4%CVE-2025-26167HIGHBuffalo LS520D 4.53 is vulnerable to Arbitrary file read, which allows unauthenticated attackers to access the NAS web UI and read arbitraryEPSS 0.4%CVE-2025-32983HIGHNETSCOUT nGeniusONE before 6.4.0 b2350 allows Technical Information Disclosure via a Stack Trace.EPSS 0.4%CVE-2025-26309MEDIUMA memory leak has been identified in the parseSWF_DEFINESCENEANDFRAMEDATA function in util/parser.c of libming v0.4.8, which allows attackerEPSS 0.4%CVE-2025-67274HIGHAn issue in continuous.software aangine v.2025.2 allows a remote attacker to obtain sensitive information via the excel-integration-service EPSS 0.4%CVE-2025-49177MEDIUMXorg-x11-server-xwayland: xorg-x11-server: tigervnc: data leak in xfixes extension's xfixessetclientdisconnectmodeEPSS 0.4%CVE-2025-22918HIGHPolycom RealPresence Group 500 <=20 has Insecure Permissions due to automatically loaded cookies. This allows for the use of administrator fEPSS 0.4%CVE-2023-43994MEDIUMAn issue in Cleaning_makotoya mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel aEPSS 0.4%CVE-2023-5160MEDIUMFull name disclosure via team top membership with Show Full Name option disabledEPSS 0.4%CVE-2023-43995MEDIUMAn issue in picot.golf mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access tEPSS 0.4%CVE-2023-43992MEDIUMAn issue in STOCKMAN GROUP mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel acceEPSS 0.4%