Falhas do tipo CWE-497
334 resultadosCVE-2021-31955MEDIUMWindows Kernel Information Disclosure VulnerabilityEPSS 80.3%KEVCVE-2026-7864MEDIUMExposure of Sensitive Information to an Unauthorized ActorEPSS 17.0%CVE-2025-44823CRITICALNagios Log Server before 2024R1.3.2 allows authenticated users to retrieve cleartext administrative API keys via a /nagioslogserver/index.phEPSS 15.6%CVE-2026-34413HIGHXerte Online Toolkits Missing Authentication via connector.phpEPSS 2.0%CVE-2024-13999HIGHNagios XI < 2024R1.1.3 AD/LDAP Token Authenticated Information DisclosureEPSS 1.6%CVE-2024-5735MEDIUMFull Path Disclosure in AdmirorFrames Joomla! ExtensionEPSS 1.5%CVE-2020-25179—GE Healthcare Imaging and Ultrasound Products may allow specific credentials to be exposed during transport over the network.EPSS 1.4%CVE-2019-10243—In Eclipse Kura versions up to 4.0.0, Kura exposes the underlying Ui Web server version in its replies. This can be used as a hint by an attEPSS 1.3%CVE-2020-26076MEDIUMCisco IoT Field Network Director Information Disclosure VulnerabilityEPSS 1.3%CVE-2021-1535MEDIUMCisco SD-WAN vManage Information Disclosure VulnerabilityEPSS 1.2%CVE-2024-31223MEDIUMFides Information Disclosure Vulnerability in Privacy Center of SERVER_SIDE_FIDES_API_URLEPSS 1.1%CVE-2022-1902—A flaw was found in the Red Hat Advanced Cluster Security for Kubernetes. Notifier secrets were not properly sanitized in the GraphQL API. TEPSS 1.1%CVE-2024-13995HIGHNagios XI < 2024R1.1.2 API Keys & Hashed Passwords Authenticated Information DisclosureEPSS 1.1%CVE-2021-0291MEDIUMJunos OS and Junos OS Evolved: A vulnerability allows a network based unauthenticated attacker which sends a high rate of specific traffic to cause a partial Denial of ServiceEPSS 1.0%CVE-2022-20664HIGHCisco Email Security Appliance and Cisco Secure Email and Web Manager Information Disclosure VulnerabilityEPSS 1.0%CVE-2021-0260HIGHJunos OS: SNMP fails to properly perform authorization checks on incoming received SNMP requests.EPSS 0.9%CVE-2023-0342LOWMongoDB Ops Manager may disclose sensitive information in Diagnostic ArchiveEPSS 0.9%CVE-2024-13998MEDIUMNagios XI < 2024R1.1.3 API Keys & Hashed Passwords Authenticated Information DisclosureEPSS 0.9%CVE-2025-34283HIGHNagios XI < 2024R1.4.2 API Key Disclosure via Neptune ThemesEPSS 0.9%CVE-2025-53364MEDIUMParse Server exposes the data schema via GraphQL APIEPSS 0.8%