CWE-209 (通过错误消息导致的信息暴露) — Vulnerability Class 293

293 vulnerabilities classified as CWE-209 (通过错误消息导致的信息暴露). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2023-6839	WSO2 API Manager 安全漏洞 — WSO2 API Manager	5.3	Medium	2023-12-15
CVE-2023-48393	Kaifa Technology WebITR - Error Message Leakage — WebITR	4.3	Medium	2023-12-15
CVE-2023-49878	IBM System Storage Virtualization Engine information disclosure — System Storage Virtualization Engine	4.3	Medium	2023-12-13
CVE-2023-49080	Jupyter Server errors include tracebacks with path information — jupyter_server	3.5	Low	2023-12-04
CVE-2023-43021	IBM InfoSphere Information Server information disclosure — InfoSphere Information Server	5.3	Medium	2023-12-01
CVE-2023-47636	Full Path Disclosure via re-export document in pimcore/admin-ui-classic-bundle — admin-ui-classic-bundle	5.3	Medium	2023-11-15
CVE-2023-5514	Hitachi eSOMS 安全漏洞 — eSOMS	5.3	Medium	2023-11-01
CVE-2023-46240	CodeIgniter4 vulnerable to information disclosure when detailed error report is displayed in production environment — CodeIgniter4	7.5	High	2023-10-31
CVE-2022-43891	IBM Security Verify Privilege information disclosure — Security Verify Privilege	2.7	Low	2023-10-17
CVE-2023-4457	Grafana 安全漏洞 — google-sheets-datasource	5.5	Medium	2023-10-16
CVE-2023-42475	Information Disclosure Vulnerability in Statutory Reporting — SAP S/4HANA Core	4.3	Medium	2023-10-10
CVE-2023-0833	Red hat a-mq streams: component version with information disclosure flaw	4.7	Medium	2023-09-27
CVE-2023-40725	Siemens QMS Automotive 安全漏洞 — QMS Automotive	4.0	Medium	2023-09-12
CVE-2023-37489	Information Disclosure vulnerability in SAP BusinessObjects Business Intelligence Platform (Version Management System) — SAP BusinessObjects Business Intelligence Platform (Version Management System)	5.3	Medium	2023-09-12
CVE-2023-39264	Apache Superset: Stack traces enabled by default — Apache Superset	4.3	Medium	2023-09-06
CVE-2023-35124	Open Automation Software OAS Platform 安全漏洞 — OAS Platform	3.1	Low	2023-09-05
CVE-2023-33835	IBM Security Verify Information Queue information disclosure — Security Verify Information Queue	4.3	Medium	2023-08-31
CVE-2023-33834	IBM Security Verify Information Queue information disclosure — Security Verify Information Queue	4.3	Medium	2023-08-31
CVE-2023-26272	IBM Security Guardium Data Encryption information disclosure — Guardium Cloud Key Manager	5.3	Medium	2023-08-28
CVE-2023-32755	e-Excellence U-Office Force - Error Message Leakage — U-Office Force	5.3	Medium	2023-08-25
CVE-2023-40171	Dispatch writes JWT tokens in error message — dispatch	9.1	Critical	2023-08-17
CVE-2023-35009	IBM Cognos Analytics information disclosure — Cognos Analytics	5.3	Medium	2023-08-16
CVE-2023-1210	Generation of Error Message Containing Sensitive Information in GitLab — GitLab	3.1	Low	2023-08-01
CVE-2023-31429	Multiple commands print sensitive information in the terminal — Fabric OS	5.5	Medium	2023-08-01
CVE-2020-4868	IBM TRIRIGA information disclosure — TRIRIGA Application Platform	4.3	Medium	2023-07-31
CVE-2023-3362	Generation of Error Message Containing Sensitive Information in GitLab — GitLab	5.3	Medium	2023-07-13
CVE-2023-37260	league/oauth2-server key exposed in exception message when passing as string and providing invalid pass phrase — oauth2-server	8.2	High	2023-07-06
CVE-2023-34110	Flask-AppBuilder vulnerable to possible disclosure of sensitive information on user error — Flask-AppBuilder	2.7	Low	2023-06-22
CVE-2023-34339	JetBrains Ktor framework 安全漏洞 — Ktor	3.3	Low	2023-06-01
CVE-2023-33181	Sensitive Information Disclosure abusing Stack Trace in Xibo CMS — xibo-cms	4.3	Medium	2023-05-30

Vulnerabilities classified as CWE-209 (通过错误消息导致的信息暴露) represent 293 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-209 (通过错误消息导致的信息暴露) — Vulnerability Class 293