Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-212 (敏感数据的不恰当跨边界移除) — Vulnerability Class 44

44 vulnerabilities classified as CWE-212 (敏感数据的不恰当跨边界移除). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2026-20928 Windows Recovery Environment Security Feature Bypass Vulnerability — Windows 10 Version 1607 4.6 Medium2026-04-14
CVE-2026-39937 Global vanishing does not completely remove user email — Mediawiki - CentralAuth Extension 7.5AIHighAI2026-04-07
CVE-2026-34214 Trino: Iceberg REST catalog static and vended credentials are accessible via query JSON — trino 7.7 High2026-03-31
CVE-2026-1182 Improper Removal of Sensitive Information Before Storage or Transfer in GitLab — GitLab 4.3 Medium2026-03-12
CVE-2026-1732 Improper Removal of Sensitive Information Before Storage or Transfer in GitLab — GitLab 4.3 Medium2026-03-11
CVE-2026-27640 tfplan2md has Sensitive Value Exposure in Generated Reports — tfplan2md 5.3AIMediumAI2026-02-25
CVE-2025-8860 Qemu-kvm: uefi-vars: information disclosure vulnerability in uefi_vars_write callback 3.3 Low2026-02-18
CVE-2025-68131 CBORDecoder reuse can leak shareable values across decode calls — cbor2 7.5 -2025-12-31
CVE-2025-14267 Unintended temporary cached data included in a structure only copy intended to be empty of data — M-Files Server 6.5AIMediumAI2025-12-19
CVE-2025-65000 Exposure of SSH Private Keys in Remote Alert Handlers (Linux) Rule — Checkmk 7.5AIHighAI2025-12-18
CVE-2025-65965 Grype has a credential disclosure vulnerability in Grype JSON output — grype 6.5AIMediumAI2025-11-25
CVE-2025-62483 Zoom Clients - Improper Removal of Sensitive Information — Zoom Clients 5.3 Medium2025-11-13
CVE-2025-64326 Weblate leaks the IP of project members inviting users to assume reviewer roles in Audit log — weblate 2.6 Low2025-11-06
CVE-2025-0011 AMD Graphics Driver 安全漏洞 — AMD Ryzen™ 8000 Series Desktop Processors 3.3 Low2025-09-06
CVE-2025-58049 XWiki PDF export jobs store sensitive cookies unencrypted in job statuses — xwiki-platform 5.8 Medium2025-08-28
CVE-2025-48708 Artifex Ghostscript 安全漏洞 — Ghostscript 4.0 Medium2025-05-23
CVE-2025-27221 Ruby 安全漏洞 — URI 3.2 Low2025-03-03
CVE-2025-20118 Cisco Application Policy Infrastructure Controller Authenticated Command Injection Due to Sensitive Disclosure Vulnerability — Cisco Application Policy Infrastructure Controller (APIC) 4.4 Medium2025-02-26
CVE-2024-8474 OpenVPN Connect 安全漏洞 — OpenVPN Connect 7.5 -2025-01-06
CVE-2024-56353 JetBrains TeamCity 安全漏洞 — TeamCity 5.5 Medium2024-12-20
CVE-2024-41156 Hitachi Energy TRO600 安全漏洞 — TRO600 2.7 Low2024-10-29
CVE-2024-43554 Windows Kernel-Mode Driver Information Disclosure Vulnerability — Windows 10 Version 1809 5.5 Medium2024-10-08
CVE-2024-29120 Apache StreamPark: Information leakage vulnerability — Apache StreamPark 8.8AIHighAI2024-07-17
CVE-2024-31493 Fortinet FortiSOAR 授权问题漏洞 — FortiSOAR 6.0 Medium2024-06-03
CVE-2024-32028 Sensitive query parameters logged by default in OpenTelemetry.Instrumentation http and AspNetCore — opentelemetry-dotnet 4.1 Medium2024-04-12
CVE-2023-28834 Full path of data directory exposed to Nextcloud server users — security-advisories 3.5 Low2023-04-03
CVE-2022-4734 Improper Removal of Sensitive Information Before Storage or Transfer in usememos/memos — usememos/memos 8.1 High2022-12-25
CVE-2022-2818 Improper Removal of Sensitive Information Before Storage or Transfer in cockpit-hq/cockpit — cockpit-hq/cockpit 9.8 Critical2022-08-15
CVE-2022-1893 Improper Removal of Sensitive Information Before Storage or Transfer in polonel/trudesk — polonel/trudesk 4.6 Medium2022-05-31
CVE-2022-30618 Strapi 安全漏洞 — Strapi 7.5 -2022-05-19

Vulnerabilities classified as CWE-212 (敏感数据的不恰当跨边界移除) represent 44 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.