CWE-550

4 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →

CVEs classified under CWE-550page 1 of 1

CVE-2023-40726HIGHCVSS 8.8EG 8.8
2023-09-12
A vulnerability has been identified in QMS Automotive (All versions < V12.39). The affected application server responds with sensitive information about the server. This could allow an attacker to directly access the database.
CVE-2023-5617MEDIUMCVSS 5.3EG 5.3
2024-02-28
Hitachi Vantara Pentaho Data Integration & Analytics versions before 10.1.0.0 and 9.3.0.6, including 9.5.x and 8.3.x, display the version of Tomcat when a server error is encountered.
CVE-2025-36419MEDIUMCVSS 5.3EG 5.3
2026-01-20
IBM ApplinX 11.1 could disclose sensitive information about server architecture that could aid in further attacks against the system.
CVE-2025-62168CRITICALCVSS 10.0EG 10.0
2025-10-17
Squid is a caching proxy for the Web. In Squid versions prior to 7.2, a failure to redact HTTP authentication credentials in error handling allows information disclosure. The vulnerability allows a script to bypass browser security protect…

Map vulnerabilities like CWE-550 to your infrastructure

EchelonGraph correlates every CVE — across CWE-550 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.

Start Free Scan →