CWE-495
Private Data Structure Returned From A Public Method
VariantDraft
Description
The product has a method that is declared public, but returns a reference to a private data structure, which could then be modified in unexpected ways.
Hierarchy (View 1000)
Parents
Children
none
CVEs mapped to this weakness (1)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-29868 | — | 0.00 | — | 0.01 | Apr 1, 2025 | Private Data Structure Returned From A Public Method vulnerability in Apache Answer. This issue affects Apache Answer: through 1.4.2. If a user uses an externally referenced image, when a user accesses this image, the provider of the image may obtain private information about… |
- CVE-2025-29868Apr 1, 2025risk 0.00cvss —epss 0.01
Private Data Structure Returned From A Public Method vulnerability in Apache Answer. This issue affects Apache Answer: through 1.4.2. If a user uses an externally referenced image, when a user accesses this image, the provider of the image may obtain private information about…