Fallos del tipo CWE-200

3933 resultados
CVE-2023-28723LOWExposure of sensitive information to an unauthorized actor in some Intel(R) Aptio* V UEFI Firmware Integrator Tools may allow an authenticatEPSS 0.2%CVE-2025-11639MEDIUMTomofun Furbo 360/Furbo Mini Debug Log S3 Bucket collect_logs.sh sensitive informationEPSS 0.2%CVE-2025-43495MEDIUMThe issue was addressed with improved checks. This issue is fixed in iOS 18.7.2 and iPadOS 18.7.2, iOS 26.1 and iPadOS 26.1. An app may be aEPSS 0.2%CVE-2022-30740MEDIUMImproper auto-fill algorithm in Samsung Internet prior to version 17.0.1.69 allows physical attackers to guess stored credit card numbers.EPSS 0.2%CVE-2024-44184MEDIUMA permissions issue was addressed with additional restrictions. This issue is fixed in iOS 17.7 and iPadOS 17.7, iOS 18 and iPadOS 18, macOSEPSS 0.2%CVE-2026-46841MEDIUMVulnerability in Oracle REST Data Services (component: General). Supported versions that are affected are 24.2.0-26.1.0. Easily exploitableEPSS 0.2%CVE-2024-44181MEDIUMAn issue was addressed with improved handling of temporary files. This issue is fixed in macOS Sequoia 15, macOS Sonoma 14.7, macOS Ventura EPSS 0.2%CVE-2024-44182MEDIUMThis issue was addressed with improved redaction of sensitive information. This issue is fixed in macOS Sequoia 15, macOS Sonoma 14.7, macOSEPSS 0.2%CVE-2024-54469MEDIUMThe issue was addressed with improved checks. This issue is fixed in iOS 18 and iPadOS 18, macOS Sequoia 15, macOS Sonoma 14.7, macOS VenturEPSS 0.2%CVE-2026-33161LOWCraft CMS: Anonymous "assets/image-editor" calls returns private asset editor metadata to unauthorized usersEPSS 0.2%CVE-2022-33181MEDIUMAn information disclosure vulnerability in Brocade Fabric OS CLI before Brocade Fabric OS v9.1.0, 9.0.1e, 8.2.3c, 8.2.0cbn5, 7.4.2.j could aEPSS 0.2%CVE-2026-49355MEDIUMOpenProject: Private work package data disclosure through single meeting agenda item APIEPSS 0.2%CVE-2025-13215MEDIUMShortcodes and extra features for Phlox theme <= 2.17.13 - Unauthenticated Draft Posts Information ExposureEPSS 0.2%CVE-2026-53949MEDIUMGhost Content API filter bypass reveals private fieldsEPSS 0.2%CVE-2026-41182MEDIUMLangSmith SDK: Streaming token events bypass output redactionEPSS 0.2%CVE-2025-41066MEDIUMDisclosure of sensitive information in Horde GroupwareEPSS 0.2%CVE-2022-32855A logic issue was addressed with improved state management. This issue is fixed in iOS 15.6 and iPadOS 15.6. A user may be able to view restEPSS 0.2%CVE-2024-23550MEDIUMHCL DevOps Deploy / HCL Launch (UCD) may be vulnerable to sensitive information disclosureEPSS 0.2%CVE-2025-61885MEDIUMVulnerability in the Oracle Life Sciences InForm product of Oracle Health Sciences Applications (component: Web Server). The supported verEPSS 0.2%CVE-2026-32094MEDIUMShescape escape() leaves bracket glob expansion active on Bash, BusyBox, and DashEPSS 0.2%