Falhas do tipo CWE-200

3.932 resultados
CVE-2026-28434MEDIUMcpp-httplib's default exception handler leaks e.what() to clients via EXCEPTION_WHAT response headerEPSS 0.3%CVE-2026-0717MEDIUMLottieFiles – Lottie block for Gutenberg <= 3.0.0 - Unauthenticated Sensitive Information ExposureEPSS 0.3%CVE-2022-39210LOWAccess to internal files of the Nextcloud Android appEPSS 0.3%CVE-2025-30758MEDIUMVulnerability in the Siebel CRM End User product of Oracle Siebel CRM (component: User Interface). Supported versions that are affected areEPSS 0.3%CVE-2024-9542MEDIUMSky Addons for Elementor <= 2.6.1 - Authenticated (Contributor+) Sensitive Information Exposure via Content Switcher Widget Elementor TemplateEPSS 0.3%CVE-2023-0248HIGHKantech Gen1 ioSmart card readerEPSS 0.3%CVE-2026-23777MEDIUMDell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 7.7.1.0 through 8.5, LTS2025 release verEPSS 0.3%CVE-2025-40662MEDIUMAbsolute path disclosure vulnerability in DM Corporative CMSEPSS 0.3%CVE-2022-0672A flaw was found in LemMinX in versions prior to 0.19.0. Insecure redirect could allow unauthorized access to sensitive information locally EPSS 0.3%CVE-2026-14004MEDIUMInappropriate implementation in CSS in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafteEPSS 0.3%CVE-2026-42220MEDIUMnginx-ui: Authenticated settings disclosure exposes node.secret and enables trusted-node authentication abuse, backup exfiltration, and restore-based nginx-ui state rollbackEPSS 0.3%CVE-2024-41736MEDIUMInformation Disclosure vulnerability in SAP Permit to WorkEPSS 0.3%CVE-2026-13810MEDIUMInappropriate implementation in Input in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensiEPSS 0.3%CVE-2025-9139MEDIUMScada-LTS WatchListDwr.init.dwr information disclosureEPSS 0.3%CVE-2024-58255MEDIUMEnzoH has an OS command injection vulnerability. Successful exploitation of this vulnerability may lead to arbitrary command execution.EPSS 0.3%CVE-2024-6426HIGHInformation exposure vulnerability vulnerability in MESbookEPSS 0.3%CVE-2026-1669HIGHArbitrary File Read in Keras via HDF5 External DatasetsEPSS 0.3%CVE-2026-58419HIGHNotification API leaks private issue metadata after access revocationEPSS 0.3%CVE-2026-45332HIGHAutomad Broken Access Control: unauthenticated exposure of administrator bcrypt password hashes and TOTP secrets via public API endpointEPSS 0.3%CVE-2024-39593MEDIUM[CVE-2024-39593] Information Disclosure vulnerability in SAP Landscape ManagementEPSS 0.3%