CWE-497— Exposure of Sensitive System Information to an Unauthorized Control Sphere
308 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-497page 2 of 7
- CVE-2024-12993MEDIUMCVSS 4.8EG 0.02024-12-30
Infinix devices contain a pre-loaded "com.rlk.weathers" application, that exposes an unsecured content provider. An attacker can communicate with the provider and reveal the user’s location without any privileges. After multiple attemp…
- CVE-2024-13995HIGHCVSS 8.8EG 8.82025-10-30
Nagios XI versions prior to 2024R1.1.2 may (confirmed in 2024R1.1 and 2024R1.1.1) disclose sensitive user account information (including API keys and hashed passwords) to authenticated users who should not have access to that data. Expo…
- CVE-2024-13998MEDIUMCVSS 6.5EG 6.52025-11-03
Nagios XI versions prior to 2024R1.1.3, under certain circumstances, disclose sensitive user account information (including API keys and hashed passwords) to authenticated users who should not have access to that data. Exposure of API key…
- CVE-2024-13999CRITICALCVSS 9.8EG 9.82025-10-30
Nagios XI versions prior to 2024R1.1.3, under certain circumstances, disclose the server's Active Directory (AD) or LDAP authentication token to an authenticated user. Exposure of the server’s AD/LDAP token could allow domain-wide authe…
- CVE-2024-1809MEDIUMCVSS 5.4EG 5.42024-05-02
The Analytify – Google Analytics Dashboard For WordPress (GA4 analytics made easy) plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on AJAX functions in combination with nonce leakage in…
- CVE-2024-22037MEDIUMCVSS 5.5EG 5.52024-11-28
The uyuni-server-attestation systemd service needs a database_password environment variable. This file has 640 permission, and cannot be shown users, but the environment is still exposed by systemd to non-privileged users.
- CVE-2024-22124MEDIUMCVSS 4.1EG 4.12024-01-09
Under certain conditions, Internet Communication Manager (ICM) or SAP Web Dispatcher - versions KERNEL 7.22, KERNEL 7.53, KERNEL 7.54, KRNL64UC 7.22, KRNL64UC 7.22EXT, KRNL64UC 7.53, KRNL64NUC 7.22, KRNL64NUC 7.22_EXT, WEBDISP 7.22_EXT, …
- CVE-2024-22125HIGHCVSS 7.4EG 7.42024-01-09
Under certain conditions the Microsoft Edge browser extension (SAP GUI connector for Microsoft Edge) - version 1.0, allows an attacker to access highly sensitive information which would otherwise be restricted causing high impact on confi…
- CVE-2024-25035MEDIUMCVSS 5.3EG 5.32024-12-03
IBM Cognos Controller 11.0.0 and 11.0.1 exposes server details that could allow an attacker to obtain information of the application environment to conduct further attacks.
- CVE-2024-25634HIGHCVSS 7.2EG 7.22024-02-19
alf.io is an open source ticket reservation system. Prior to version 2.0-Mr-2402, an attacker can access data from other organizers. The attacker can use a specially crafted request to receive the e-mail log sent by other events. Version 2…
- CVE-2024-31223MEDIUMCVSS 5.3EG 5.32024-07-03
Fides is an open-source privacy engineering platform, and `SERVER_SIDE_FIDES_API_URL` is a server-side configuration environment variable used by the Fides Privacy Center to communicate with the Fides webserver backend. The value of this v…
- CVE-2024-31419MEDIUMCVSS 4.3EG 4.32024-04-03
An information disclosure flaw was found in OpenShift Virtualization. The DownwardMetrics feature was introduced to expose host metrics to virtual machine guests and is enabled by default. This issue could expose limited host metrics of a …
- CVE-2024-31887HIGHCVSS 7.5EG 7.52024-04-16
IBM Security Verify Privilege 11.6.25 could allow an unauthenticated actor to obtain sensitive information from the SOAP API. IBM X-Force ID: 287651.
- CVE-2024-32732MEDIUMCVSS 5.3EG 5.32024-12-10
Under certain conditions SAP BusinessObjects Business Intelligence platform allows an attacker to access information which would otherwise be restricted.This has low impact on Confidentiality with no impact on Integrity and Availability of…
- CVE-2024-36070HIGHCVSS 7.5EG 7.52024-05-19
tine before 2023.11.8, when an LDAP backend is used, allows anonymous remote attackers to obtain sensitive authentication information via setup.php because of getRegistryData in Setup/Frontend/Json.php. (An update is also available for the…
- CVE-2024-36509MEDIUMCVSS 4.2EG 4.22024-11-12
An exposure of sensitive system information to an unauthorized control sphere vulnerability [CWE-497] in FortiWeb version 7.6.0, version 7.4.3 and below, version 7.2.10 and below, version 7.0.10 and below, version 6.3.23 and below may allo…
- CVE-2024-36554CRITICALCVSS 9.8EG 9.82025-02-06
Forever KidsWatch Call Me KW-50 R36_YDR_A3PW_GM7S_V1.0_2019_07_15_16.19.24_cob_h and Forever KidsWatch Call Me KW-60 R36CW_YDE_S4_A29_2_V1.0_2023.05.24_22.49.44_cob_b allow a malicious user to gain information about the device by sending a…
- CVE-2024-37070MEDIUMCVSS 4.3EG 4.32024-11-19
IBM Concert Software 1.0.0, 1.0.1, 1.0.2, and 1.0.2.1 could allow an authenticated user to obtain sensitive information that could aid in further attacks against the system.
- CVE-2024-37526MEDIUMCVSS 6.5EG 6.52025-01-27
IBM Watson Query on Cloud Pak for Data (IBM Data Virtualization 1.8, 2.0, 2.1, 2.2, and 3.0.0) could allow an authenticated user to obtain sensitive information from objects published using Watson Query due to an improper data protection …
- CVE-2024-3774MEDIUMCVSS 5.3EG 5.32024-04-15
aEnrich Technology a+HRD's functionality for front-end retrieval of system configuration values lacks proper restrictions on a specific parameter, allowing attackers to modify this parameter to access certain sensitive system configuration…
- CVE-2024-39675HIGHCVSS 8.8EG 8.82024-07-09
A vulnerability has been identified in RUGGEDCOM RMC30 (All versions < V4.3.10), RUGGEDCOM RMC30NC (All versions < V4.3.10), RUGGEDCOM RP110 (All versions < V4.3.10), RUGGEDCOM RP110NC (All versions < V4.3.10), RUGGEDCOM RS400 (All version…
- CVE-2024-39740MEDIUMCVSS 4.3EG 4.32024-07-15
IBM Datacap Navigator 9.1.5, 9.1.6, 9.1.7, 9.1.8, and 9.1.9 displays version information in HTTP requests that could allow an attacker to gather information for future attacks against the system. IBM X-Force ID: 296009.
- CVE-2024-4008CRITICALCVSS 9.6EG 9.62024-06-05
FDSK Leak in ABB, Busch-Jaeger, FTS Display (version 1.00) and BCU (version 1.3.0.33) allows attacker to take control via access to local KNX Bus-System
- CVE-2024-40706MEDIUMCVSS 5.3EG 5.32025-01-24
IBM InfoSphere Information Server 11.7 could allow a remote user to obtain sensitive version information that could aid in further attacks against the system.
- CVE-2024-41781MEDIUMCVSS 5.1EG 5.12024-11-22
IBM PowerVM Platform KeyStore (IBM PowerVM Hypervisor FW950.00 through FW950.90, FW1030.00 through FW1030.60, FW1050.00 through FW1050.20, and FW1060.00 through FW1060.10 functionality can be compromised if an attacker gains service acc…
- CVE-2024-45549HIGHCVSS 7.7EG 7.72025-04-07
Information disclosure while creating MQ channels.
- CVE-2024-45640MEDIUMCVSS 5.3EG 5.32025-01-07
IBM Security ReaQta 3.12 returns sensitive information in an HTTP response that could be used in further attacks against the system.
- CVE-2024-47799LOWCVSS 3.5EG 3.52024-11-12
Exposure of sensitive system information to an unauthorized control sphere issue exists in Mesh Wi-Fi router RP562B firmware version v1.0.2 and earlier. If this vulnerability is exploited, a network-adjacent authenticated attacker may obta…
- CVE-2024-48024HIGHCVSS 7.5EG 7.52024-10-17
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Fahad Mahmood Keep Backup Daily keep-backup-daily allows Retrieve Embedded Sensitive Data.This issue affects Keep Backup Daily: from n/a through <=…
- CVE-2024-49252MEDIUMCVSS 5.3EG 5.32024-10-16
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in VaultDweller Leyka leyka.This issue affects Leyka: from n/a through <= 3.31.6.
- CVE-2024-50425MEDIUMCVSS 6.5EG 6.52024-10-29
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Roland Murg WP Booking System wp-booking-system.This issue affects WP Booking System: from n/a through <= 2.0.19.10.
- CVE-2024-50528HIGHCVSS 7.5EG 7.52024-11-04
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Stacks Stacks Mobile App Builder stacks-mobile-app-builder allows Retrieve Embedded Sensitive Data.This issue affects Stacks Mobile App Builder: fr…
- CVE-2024-51770HIGHCVSS 7.5EG 7.52025-07-14
An information disclosure vulnerability exists in HPE AutoPass License Server (APLS) prior to 9.17.
- CVE-2024-52033MEDIUMCVSS 5.3EG 5.32024-11-20
Exposure of sensitive system information to an unauthorized control sphere issue exists in Rakuten Turbo 5G firmware version V1.3.18 and earlier. If this vulnerability is exploited, a remote unauthenticated attacker may obtain information …
- CVE-2024-52321MEDIUMCVSS 5.9EG 5.92024-12-23
Multiple SHARP routers contain an improper authentication vulnerability in the configuration backup function. The product's backup files containing sensitive information may be retrieved by a remote unauthenticated attacker.
- CVE-2024-52367MEDIUMCVSS 5.3EG 5.32025-01-07
IBM Concert Software 1.0.0, 1.0.1, 1.0.2, 1.0.2.1, and 1.0.3 could disclose sensitive system information to an unauthorized actor that could be used in further attacks against the system.
- CVE-2024-52582MEDIUMCVSS 4.7EG 4.72024-11-19
Cachi2 is a command-line interface tool that pre-fetches a project's dependencies to aid in making the project's build process network-isolated. Prior to version 0.14.0, secrets may be shown in logs when an unhandled exception is triggered…
- CVE-2024-52905LOWCVSS 2.7EG 2.72025-03-10
IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.2.6 and 6.2.0.0 through 6.2.0.3 could disclose sensitive database information to a privileged user.
- CVE-2024-53683MEDIUMCVSS 4.4EG 4.42025-01-17
A valid set of credentials in a .js file and a static token for communication were obtained from the decompiled IPA. An attacker could use the information to disrupt normal use of the application by changing the translation files and th…
- CVE-2024-53768MEDIUMCVSS 5.3EG 5.32024-11-30
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in ideinteractive Content Audit Exporter content-audit-exporter allows Retrieve Embedded Sensitive Data.This issue affects Content Audit Exporter: fro…
- CVE-2024-53814MEDIUMCVSS 6.5EG 6.52024-12-09
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Adnan Analytify wp-analytify.This issue affects Analytify: from n/a through <= 5.4.3.
- CVE-2024-53867MEDIUMCVSS 4.3EG 4.32024-12-03
Synapse is an open-source Matrix homeserver. The Sliding Sync feature on Synapse versions between 1.113.0rc1 and 1.120.0 can leak partial room state changes to users no longer in a room. Non-state events, like messages, are unaffected. Thi…
- CVE-2024-54279HIGHCVSS 7.5EG 7.52024-12-16
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Tobias Keller WP-NERD Toolkit wp-nerd-toolkit.This issue affects WP-NERD Toolkit: from n/a through <= 1.1.
- CVE-2024-5735HIGHCVSS 7.5EG 7.52024-06-28
Full Path Disclosure vulnerability in AdmirorFrames Joomla! extension in afHelper.php script allows an unauthorised attacker to retrieve location of web root folder. This issue affects AdmirorFrames: before 5.0.
- CVE-2024-58320MEDIUMCVSS 5.3EG 5.32025-12-18
An information disclosure vulnerability in Kentico Xperience allows public users to access sensitive administration interface hostname details during authentication. Attackers can retrieve confidential hostname configuration information th…
- CVE-2024-6388MEDIUMCVSS 5.9EG 5.92024-06-27
Marco Trevisan discovered that the Ubuntu Advantage Desktop Daemon, before version 1.12, leaks the Pro token to unprivileged users by passing the token as an argument in plaintext.
- CVE-2024-6389MEDIUMCVSS 4.3EG 4.32024-09-12
An issue was discovered in GitLab-CE/EE affecting all versions starting with 17.0 before 17.1.7, 17.2 before 17.2.5, and 17.3 before 17.3.2. An attacker as a guest user was able to access commit information via the release Atom endpoint, c…
- CVE-2024-8313HIGHCVSS 8.7EG 0.02025-03-25
An Exposure of Sensitive System Information to an Unauthorized Control Sphere and Initialization of a Resource with an Insecure Default vulnerability in the SNMP component of B&R APROL <4.4-00P5 may allow an unauthenticated adjacent-based …
- CVE-2024-8550HIGHCVSS 7.5EG 7.52025-02-10
A Local File Inclusion (LFI) vulnerability exists in the /load-workflow endpoint of modelscope/agentscope version v0.0.4. This vulnerability allows an attacker to read arbitrary files from the server, including sensitive files such as API …
- CVE-2024-8687HIGHCVSS 7.1EG 7.12024-09-11
An information exposure vulnerability exists in Palo Alto Networks PAN-OS software that enables a GlobalProtect end user to learn both the configured GlobalProtect uninstall password and the configured disable or disconnect passcode. After…
Map vulnerabilities like CWE-497 to your infrastructure
EchelonGraph correlates every CVE — across CWE-497 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →