Falhas do tipo CWE-200

3.951 resultados
CVE-2026-12117MEDIUMImproper access control in the social login connection endpoint in Devolutions Server 2026.2.5 allows an authenticated vault member to enuEPSS 0.2%CVE-2026-3433MEDIUMMattermost fails to scope role_updated websocket events to authorized team and channel membersEPSS 0.2%CVE-2025-8448LOWCWE-200: Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists that could cause unauthorized access to sensitive cEPSS 0.2%CVE-2022-42442LOWIBM Robotic Process Automation for Cloud Pak information disclosureEPSS 0.2%CVE-2026-31869MEDIUMDiscourse: Composer mentions endpoint leaks hidden group membership through PM `allowed_names` checkEPSS 0.2%CVE-2026-12320MEDIUMInformation disclosure in the Password Manager componentEPSS 0.2%CVE-2025-38746LOWDell SupportAssist OS Recovery, versions prior to 5.5.14.0, contains an Exposure of Sensitive Information to an Unauthorized Actor vulnerabiEPSS 0.2%CVE-2025-46283MEDIUMA logic issue was addressed with improved validation. This issue is fixed in macOS Sonoma 14.8.4, macOS Tahoe 26.2. An app may be able to acEPSS 0.2%CVE-2025-43523MEDIUMA permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.7.3, macOS Tahoe 26.2. An app may beEPSS 0.2%CVE-2026-0747LOWExposure of sensitive information in the TeamViewer entry dashboard component in Devolutions Remote Desktop Manager 2025.3.24.0 through 2025EPSS 0.2%CVE-2026-54276MEDIUMAIOHTTP: DigestAuthMiddleware Applies Credentials to Cross-Origin Redirect ChallengesEPSS 0.2%CVE-2022-34314MEDIUM IBM CICS TX 11.1 could disclose sensitive information to a local user due to insecure permission settings. IBM X-Force ID: 229450. EPSS 0.2%CVE-2025-11634LOWTomofun Furbo 360/Furbo Mini UART information disclosureEPSS 0.2%CVE-2025-24142MEDIUMA privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sequoia 15.5, macOS Sonoma EPSS 0.2%CVE-2025-55165HIGHAutocaliweb Exposure of Sensitive Information to an Unauthorized Actor in `config_sql.py`EPSS 0.2%CVE-2025-43579MEDIUMAcrobat Reader | Information Exposure (CWE-200)EPSS 0.2%CVE-2025-24363MEDIUMThe HL7 FHIR IG publisher may potentially expose GitHub repo user and credential informationEPSS 0.2%CVE-2022-43540MEDIUMA vulnerability exists in the ClearPass OnGuard macOS agent that allows for an attacker with local macOS instance access to potentially obtaEPSS 0.2%CVE-2025-29316MEDIUMAn issue in DataPatrol Screenshot watermark, printing watermark agent v.3.5.2.0 allows a physically proximate attacker to obtain sensitive iEPSS 0.2%CVE-2025-64703MEDIUMMaxKB has Information Leak in sandboxEPSS 0.2%