CWE-200: Exposure of Sensitive Information to an Unauthorized Actor — known CVE vulnerabilities
CVEs classified under CWE-200 (Exposure of Sensitive Information to an Unauthorized Actor), ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (50)
CVE-2026-27604: FOSSBilling is a free, open-source billing and client management system. Starting in version 0.5.4 and prior to version 0.8.0, an…
CVE-2026-40965 — CVSS 10.0 (critical): Cloud Foundry UAA versions v76.12.0 through v78.12.0 are vulnerable to a private key exposure. The server contains a vulnerability where EC…
CVE-2026-42826 — CVSS 10.0 (critical): Exposure of sensitive information to an unauthorized actor in Azure DevOps allows an unauthorized attacker to disclose information over a…
CVE-2025-29270 — CVSS 10.0 (critical): Incorrect access control in the realtime.cgi endpoint of Deep Sea Electronics devices DSE855 v1.1.0 to v1.1.26 allows attackers to gain…
CVE-2025-61481 — CVSS 10.0 (critical): An issue in MikroTik RouterOS v.7.14.2 and SwOS v.2.18 exposes the WebFig management interface over cleartext HTTP by default, allowing an…
CVE-2025-53624 — CVSS 10.0 (critical): The Docusaurus gists plugin adds a page to your Docusaurus instance, displaying all public gists of a GitHub user. docusaurus-plugin-content…
CVE-2025-22612 — CVSS 10.0 (critical): Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to version 4.0.0-beta.374, the…
CVE-2023-42454 — CVSS 10.0 (critical): SQLpage is a SQL-only webapp builder. Someone using SQLpage versions prior to 0.11.1, whose SQLpage instance is exposed publicly, with a…
CVE-2017-2320 — CVSS 10.0 (critical): A vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow an unauthenticated…
CVE-2015-0987 — CVSS 10.0 (critical): Omron CX-One CX-Programmer before 9.6, CJ2M PLC devices before 2.1, and CJ2H PLC devices before 1.5 rely on cleartext password…
CVE-2015-2897 — CVSS 10.0 (critical): Sierra Wireless ALEOS before 4.4.2 on AirLink ES, GX, and LS devices has hardcoded root accounts, which makes it easier for remote…
CVE-2014-9162 — CVSS 10.0 (critical): Adobe Flash Player before 13.0.0.259 and 14.x through 16.x before 16.0.0.235 on Windows and OS X and before 11.2.202.425 on Linux allows…
CVE-2013-0693 — CVSS 10.0 (critical): The kernel in ENEA OSE on the Emerson Process Management ROC800 RTU with software 3.50 and earlier, DL8000 RTU with software 2.30 and…
CVE-2011-3497 — CVSS 10.0 (critical): service.exe in Measuresoft ScadaPro 4.0.0 and earlier allows remote attackers to execute arbitrary DLL functions via the XF function…
CVE-2011-1643 — CVSS 10.0 (critical): Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 6.x, 7.x before 7.1(5b)su4, 8.0, and 8.5 before 8.5(1)su2 and Cisco…
CVE-2011-0376 — CVSS 10.0 (critical): The TFTP implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.5.x, 1.6.0, and 1.6.1 allows remote attackers…
CVE-2010-1230 — CVSS 10.0 (critical): Google Chrome before 4.1.249.1036 does not have the expected behavior for attempts to delete Web SQL Databases and clear the Strict…
CVE-2008-3010 — CVSS 10.0 (critical): Microsoft Windows Media Player 6.4, Windows Media Format Runtime 7.1 through 11, and Windows Media Services 4.1 and 9 incorrectly associate…
CVE-2008-3914 — CVSS 10.0 (critical): Multiple unspecified vulnerabilities in ClamAV before 0.94 have unknown impact and attack vectors related to file descriptor leaks on the…
CVE-2008-0082 — CVSS 10.0 (critical): An ActiveX control (Messenger.UIAutomation.1) in Windows Messenger 4.7 and 5.1 is marked as safe-for-scripting, which allows remote…
CVE-2008-1155 — CVSS 10.0 (critical): Cisco Network Admission Control (NAC) Appliance 3.5.x, 3.6.x before 3.6.4.4, 4.0.x before 4.0.6, and 4.1.x before 4.1.2 allows remote…
CVE-2008-1252 — CVSS 10.0 (critical): b_banner.stm (aka the login page) on the Deutsche Telekom Speedport W500 DSL router allows remote attackers to obtain the logon password by…
CVE-2026-54305 — CVSS 9.9 (critical): n8n is an open source workflow automation platform. Prior to 1.123.55, 2.25.7, and 2.26.2, three EE endpoints used by the Dynamic…
CVE-2026-21515 — CVSS 9.9 (critical): Exposure of sensitive information to an unauthorized actor in Azure IOT Central allows an authorized attacker to elevate privileges over a…
CVE-2025-55190 — CVSS 9.9 (critical): Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. In versions 2.13.0 through 2.13.8, 2.14.0 through 2.14.15, 3.0.0…
CVE-2024-38650 — CVSS 9.9 (critical): An authentication bypass vulnerability can allow a low privileged attacker to access the NTLM hash of service account on the VSPC server.
CVE-2023-28444 — CVSS 9.9 (critical): angular-server-side-configuration helps configure an angular application at runtime on the server or in a docker container via environment…
CVE-2020-27134 — CVSS 9.9 (critical): Multiple vulnerabilities in Cisco Jabber for Windows, Jabber for MacOS, and Jabber for mobile platforms could allow an attacker to execute…
CVE-2018-12892 — CVSS 9.9 (critical): An issue was discovered in Xen 4.7 through 4.10.x. libxl fails to pass the readonly flag to qemu when setting up a SCSI disk, due to what…
CVE-2015-7926 — CVSS 9.9 (critical): eWON devices with firmware before 10.1s0 omit RBAC for I/O server information and status requests, which allows remote attackers to obtain…
CVE-2026-43992 — CVSS 9.8 (critical): JunoClaw is an agentic AI platform built on Juno Network. Prior to 0.x.y-security-1, every MCP write tool (send_tokens, execute_contract…
CVE-2026-41492 — CVSS 9.8 (critical): Dgraph is an open source distributed GraphQL database. Prior to 25.3.3, Dgraphl exposes the process command line through the…
CVE-2026-40498 — CVSS 9.8 (critical): FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.213, an unauthenticated attacker can access diagnostic…
CVE-2026-32865 — CVSS 9.8 (critical): OPEXUS eComplaint and eCASE before version 10.1.0.0 include the secret verification code in the HTTP response when requesting a password…
CVE-2026-26273 — CVSS 9.8 (critical): Known is a social publishing platform. Prior to 1.6.3, a Critical Broken Authentication vulnerability exists in Known 1.6.2 and earlier…
CVE-2026-0905 — CVSS 9.8 (critical): Insufficient policy enforcement in Network in Google Chrome prior to 144.0.7559.59 allowed an attack who obtained a network log file to…
CVE-2026-22237 — CVSS 9.8 (critical): The vulnerability exists in BLUVOYIX due to the exposure of sensitive internal API documentation. An unauthenticated remote attacker could…
CVE-2025-47855 — CVSS 9.8 (critical): An exposure of sensitive information to an unauthorized actor [CWE-200] vulnerability in Fortinet FortiFone 7.0.0 through 7.0.1, FortiFone…
CVE-2025-11693 — CVSS 9.8 (critical): The Export WP Page to Static HTML & PDF plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and…
CVE-2025-65820 — CVSS 9.8 (critical): An issue was discovered in Meatmeet Android Mobile Application 1.1.2.0. An exported activity can be spawned with the mobile application…
CVE-2025-54304 — CVSS 9.8 (critical): An issue was discovered on Thermo Fisher Ion Torrent OneTouch 2 INS1005527 devices. When they are powered on, an X11 display server is…
CVE-2025-63958 — CVSS 9.8 (critical): MILLENSYS Vision Tools Workspace 6.5.0.2585 exposes a sensitive configuration endpoint (/MILLENSYS/settings) that is accessible without…
CVE-2017-20210 — CVSS 9.8 (critical): Photo Station 5.4.1 & 5.2.7 include the security fix for the vulnerability related to the XMR mining programs identified by internal…
CVE-2025-11749 — CVSS 9.8 (critical): The AI Engine plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.1.3 via the…
CVE-2025-11710 — CVSS 9.8 (critical): A compromised web process using malicious IPC messages could have caused the privileged browser process to reveal blocks of its memory to…
CVE-2025-9209 — CVSS 9.8 (critical): The RestroPress – Online Food Ordering System plugin for WordPress is vulnerable to Authentication Bypass in versions 3.0.0 to 3.1.9.2…
CVE-2025-57441 — CVSS 9.8 (critical): The Blackmagic ATEM Mini Pro 2.7 exposes sensitive device and stream configuration information via an unauthenticated Telnet service on…
CVE-2025-57437 — CVSS 9.8 (critical): The Blackmagic Web Presenter HD firmware version 3.3 exposes sensitive information via an unauthenticated Telnet service on port 9977. When…
CVE-2025-43362 — CVSS 9.8 (critical): The issue was addressed with improved checks. This issue is fixed in iOS 18.7 and iPadOS 18.7, iOS 26 and iPadOS 26. An app may be able to…