Falhas do tipo CWE-200
3.880 resultadosCVE-2022-46650MEDIUMAcemanager in ALEOS before version 4.16 allows a user with valid credentials to reconfigure the device to expose the ACEManager credentials EPSS 12.3%CVE-2022-0281HIGHExposure of Sensitive Information to an Unauthorized Actor in microweber/microweberEPSS 12.0%CVE-2022-20821MEDIUMCisco IOS XR Software Health Check Open Port VulnerabilityEPSS 11.8%KEVCVE-2021-40690—Bypass of the secureValidation propertyEPSS 10.4%CVE-2025-60344HIGHA path traversal (directory traversal) vulnerability in D-Link DSR series routers allows unauthenticated remote attackers to manipulate inpuEPSS 10.3%CVE-2026-20133MEDIUMA vulnerability in Cisco Catalyst SD-WAN Software could allow an unauthenticated, remote attacker to view sensitive information on an affectEPSS 10.2%KEVCVE-2025-4270MEDIUMTOTOLINK A720R Config cstecgi.cgi information disclosureEPSS 9.7%CVE-2026-34472HIGHUnauthenticated credential disclosure in the wizard interface in ZTE ZXHN H188A V6.0.10P2_TE and V6.0.10P3N3_TE allows unauthenticated attacEPSS 8.9%CVE-2024-33603MEDIUMThe LevelOne WBR-6012 router has an information disclosure vulnerability in its web application, which allows unauthenticated users to accesEPSS 8.8%CVE-2025-4902MEDIUMD-Link DI-7003GV2 versionupdate.data sub_48F4F0 information disclosureEPSS 8.5%CVE-2018-3646MEDIUMSystems with microprocessors utilizing speculative execution and address translations may allow unauthorized disclosure of information residEPSS 8.1%CVE-2018-15964HIGHAdobe ColdFusion versions July 12 release (2018.0.0.310739), Update 6 and earlier, and Update 14 and earlier have a use of a component with EPSS 7.9%CVE-2017-12163MEDIUMAn information leak flaw was found in the way SMB1 protocol was implemented by Samba before 4.4.16, 4.5.x before 4.5.14, and 4.6.x before 4.EPSS 7.6%CVE-1999-0511CRITICALIP forwarding is enabled on a machine which is not a router or firewall.EPSS 6.9%CVE-2023-34261—Kyocera TASKalfa 4053ci printers through 2VG_S000.002.561 allow identification of valid user accounts via username enumeration because they EPSS 6.7%CVE-2021-30638—An Information Disclosure due to insufficient input validation exists in Apache Tapestry 5.4.0 and laterEPSS 6.6%CVE-2017-15099—INSERT ... ON CONFLICT DO UPDATE commands in PostgreSQL 10.x before 10.1, 9.6.x before 9.6.6, and 9.5.x before 9.5.10 disclose table contentEPSS 6.3%CVE-2019-1681HIGHCisco Network Convergence System 1000 Series TFTP Directory Traversal VulnerabilityEPSS 6.3%CVE-2017-6621—A vulnerability in the web interface of Cisco Prime Collaboration Provisioning could allow an unauthenticated, remote attacker to access senEPSS 6.2%CVE-2021-37704MEDIUMExposed phpinfo() in PhpFastCacheEPSS 6.1%