Fallos del tipo CWE-200

3933 resultados
CVE-2024-52589LOWModerators can view Screened emails even when the “moderators view emails” option is disabled in DiscourseEPSS 0.2%CVE-2025-20379LOWRisky command safeguards bypass using the “/services/streams/search“ REST endpoint through “q“ parameter in Splunk EnterpriseEPSS 0.2%CVE-2024-28238LOWSession Token in URL in directusEPSS 0.2%CVE-2025-24262MEDIUMA privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sequoia 15.4. A sandboxed aEPSS 0.2%CVE-2026-49187HIGHHard-coded APK Resource Credentials & SceptersEPSS 0.2%CVE-2026-49193HIGHPublicly Readable AWS S3 Telemetry BucketsEPSS 0.2%CVE-2026-23743MEDIUMDiscourse allows permalinks to restricted resources to leak resource slugs to unauthorized usersEPSS 0.2%CVE-2025-11196MEDIUMExternal Login <= 1.11.2 - Authenticated (Subscriber+) Sensitive Data Exposure via Test ConnectionEPSS 0.2%CVE-2025-11983MEDIUMWP Discourse <= 2.5.9 - Authenticated (Author+) Information ExposureEPSS 0.2%CVE-2026-50210MEDIUMWeak Static Cryptographic Initialization VectorsEPSS 0.2%CVE-2025-51643LOWMeitrack T366G-L GPS Tracker devices contain an SPI flash chip (Winbond 25Q64JVSIQ) that is accessible without authentication or tamper protEPSS 0.2%CVE-2025-49824LOWconda-smithy Insecure Encryption Vulnerable to Oracle Padding AttackEPSS 0.2%CVE-2025-24138MEDIUMThis issue was addressed through improved state management. This issue is fixed in macOS Sequoia 15.3, macOS Sonoma 14.7.3, macOS Ventura 13EPSS 0.2%CVE-2025-11717CRITICALThe password edit screen was not hidden in Android card viewEPSS 0.2%CVE-2021-3585A flaw was found in openstack-tripleo-heat-templates. Plain passwords from RHSM exist in the logs during OSP13 deployment with subscription-EPSS 0.2%CVE-2025-26709MEDIUMUnauthorized Access Vulnerability in ZTE F50EPSS 0.2%CVE-2026-31951MEDIUMLibreChat's MCP Server Header Injection Enables OAuth Token TheftEPSS 0.2%CVE-2026-22015MEDIUMVulnerability in the MySQL Server product of Oracle MySQL (component: Server: Information Schema). Supported versions that are affected areEPSS 0.2%CVE-2024-36955HIGHALSA: hda: intel-sdw-acpi: fix usage of device_get_named_child_node()EPSS 0.2%CVE-2025-24280MEDIUMAn access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app mEPSS 0.2%