VYPR

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

ClassDraftLikelihood: High

Description

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

Hierarchy (View 1000)

Related attack patterns (CAPEC)

CAPEC-116 · CAPEC-13 · CAPEC-169 · CAPEC-22 · CAPEC-224 · CAPEC-285 · CAPEC-287 · CAPEC-290 · CAPEC-291 · CAPEC-292 · CAPEC-293 · CAPEC-294 · CAPEC-295 · CAPEC-296 · CAPEC-297 · CAPEC-298 · CAPEC-299 · CAPEC-300 · CAPEC-301 · CAPEC-302 · CAPEC-303 · CAPEC-304 · CAPEC-305 · CAPEC-306 · CAPEC-307 · CAPEC-308 · CAPEC-309 · CAPEC-310 · CAPEC-312 · CAPEC-313 · CAPEC-317 · CAPEC-318 · CAPEC-319 · CAPEC-320 · CAPEC-321 · CAPEC-322 · CAPEC-323 · CAPEC-324 · CAPEC-325 · CAPEC-326 · CAPEC-327 · CAPEC-328 · CAPEC-329 · CAPEC-330 · CAPEC-472 · CAPEC-497 · CAPEC-508 · CAPEC-573 · CAPEC-574 · CAPEC-575 · CAPEC-576 · CAPEC-577 · CAPEC-59 · CAPEC-60 · CAPEC-616 · CAPEC-643 · CAPEC-646 · CAPEC-651 · CAPEC-79

CVEs mapped to this weakness (7,319)

page 84 of 366
  • CVE-2015-7514MedJun 7, 2017
    risk 0.42cvss 6.5epss 0.02

    OpenStack Ironic 4.2.0 through 4.2.1 does not "clean" the disk after use, which allows remote authenticated users to obtain sensitive information.

  • CVE-2016-3066MedJun 6, 2017
    risk 0.42cvss 6.5epss 0.01

    The spice-gtk widget allows remote authenticated users to obtain information from the host clipboard.

  • CVE-2015-5383HigMay 23, 2017
    risk 0.42cvss 7.5epss 0.04

    Roundcube Webmail 1.1.x before 1.1.2 allows remote attackers to obtain sensitive information by reading files in the (1) config, (2) temp, or (3) logs directory.

  • CVE-2017-5655MedMay 15, 2017
    risk 0.42cvss 6.5epss 0.02

    In Ambari 2.2.2 through 2.4.2 and Ambari 2.5.0, sensitive data may be stored on disk in temporary files on the Ambari Server host. The temporary files are readable by any user authenticated on the host.

  • CVE-2017-8878MedMay 10, 2017
    risk 0.42cvss 6.5epss 0.01

    ASUS RT-AC* and RT-N* devices with firmware before 3.0.0.4.380.7378 allow remote authenticated users to discover the Wi-Fi password via WPS_info.xml.

  • CVE-2017-8877MedMay 10, 2017
    risk 0.42cvss 6.5epss 0.01

    ASUS RT-AC* and RT-N* devices with firmware through 3.0.0.4.380.7378 allow JSONP Information Disclosure such as the SSID.

  • CVE-2017-7216MedMay 2, 2017
    risk 0.42cvss 6.5epss 0.01

    The Management Web Interface in Palo Alto Networks PAN-OS before 7.1.9 allows remote authenticated users to obtain sensitive information via unspecified request parameters.

  • CVE-2017-7644MedApr 29, 2017
    risk 0.42cvss 6.5epss 0.01

    The Management Web Interface in Palo Alto Networks PAN-OS before 6.1.17, 7.x before 7.0.15, and 7.1.x before 7.1.9 allows remote authenticated users to obtain sensitive information by leveraging incorrect permission validation, aka PAN-SA-2017-0013 and PAN-70541.

  • CVE-2017-3586MedApr 24, 2017
    risk 0.42cvss 6.4epss 0.02

    Vulnerability in the MySQL Connectors component of Oracle MySQL (subcomponent: Connector/J). Supported versions that are affected are 5.1.41 and earlier. Easily "exploitable" vulnerability allows low privileged attacker with network access via multiple protocols to compromise…

  • CVE-2017-2326MedApr 24, 2017
    risk 0.42cvss 6.5epss 0.01

    An information disclosure vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow an unprivileged, authenticated, network-based attacker to replicate the underlying Junos OS VM and all data it maintains to their local…

  • CVE-2017-2318MedApr 24, 2017
    risk 0.42cvss 6.5epss 0.01

    A vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow an authenticated malicious user to read log files which will compromise the integrity of the system, or provide elevation of privileges.

  • CVE-2017-6614MedApr 20, 2017
    risk 0.42cvss 6.5epss 0.02

    A vulnerability in the file-download feature of the web user interface for Cisco FindIT Network Probe Software 1.0.0 could allow an authenticated, remote attacker to download and view any system file by using the affected software. The vulnerability is due to the absence of…

  • CVE-2016-4843MedApr 20, 2017
    risk 0.42cvss 6.5epss 0.02

    Cybozu Mailwise before 5.4.0 allows remote attackers to obtain sensitive cookie information.

  • CVE-2016-4869MedApr 17, 2017
    risk 0.42cvss 6.5epss 0.02

    Cybozu Office 9.0.0 to 10.4.0 allow remote attackers to obtain session information via a page where CGI environment variables are displayed.

  • CVE-2016-8925MedApr 14, 2017
    risk 0.42cvss 6.5epss 0.01

    IBM Tivoli Application Dependency Discovery Manager 7.2.2 and 7.3 could allow a remote attacker to include arbitrary files which could allow the attacker to read any file on the system. IBM X-Force ID: 118538.

  • CVE-2017-5672MedApr 11, 2017
    risk 0.42cvss 6.5epss 0.01

    Kony Enterprise Mobile Management (EMM) before 4.2.5.2 has the vulnerability of disclosing the private key in clear-text when changing the parameters of the request.

  • CVE-2017-7646MedApr 10, 2017
    risk 0.42cvss 6.5epss 0.01

    SolarWinds Log & Event Manager (LEM) before 6.3.1 Hotfix 4 allows an authenticated user to browse the server's filesystem and read the contents of arbitrary files contained within.

  • CVE-2016-5059MedApr 10, 2017
    risk 0.42cvss 6.5epss 0.01

    OSRAM SYLVANIA Osram Lightify Pro before 2016-07-26 allows attackers to obtain sensitive information by reading screenshots under /private/var/mobile/Containers/Data/Application.

  • CVE-2017-7589MedApr 9, 2017
    risk 0.42cvss 6.5epss 0.01

    In OpenIDM through 4.0.0 before 4.5.0, the info endpoint may leak sensitive information upon a request by the "anonymous" user, as demonstrated by responses with a 200 HTTP status code and a JSON object containing IP address strings. This is related to a missing access-control…

  • CVE-2017-3884MedApr 7, 2017
    risk 0.42cvss 6.5epss 0.02

    A vulnerability in the web interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Network (EPN) Manager could allow an authenticated, remote attacker to access sensitive data. The attacker does not need administrator credentials and could use this information to…