CWE-209: CWE-209
Yearly Trend
Top Affected Vendors
All CWE-209 CVEs (109)
CVE-2022-22363 is an information disclosure vulnerability in IBM Cognos Controller and IBM Controller that exposes detailed technical error messages t...
Jan 7, 2025IBM Security Guardium Key Lifecycle Manager versions 4.1 through 4.2.1 expose detailed technical error messages to remote attackers, potentially revea...
Dec 17, 2024This vulnerability in Wave 2.0 allows authenticated attackers to trigger error messages containing sensitive information by sending invalid inputs to ...
Nov 4, 2024Jenkins versions 2.478 and earlier (including LTS 2.462.2 and earlier) fail to properly redact multi-line secret values in error messages when form su...
Oct 2, 2024This vulnerability in Umbraco CMS allows attackers to obtain stack trace information from Management API endpoints even when debug mode is disabled. T...
Aug 20, 2024This vulnerability in Jackson-core allows up to 500 bytes of unintended memory content to leak in exception messages when parsing JSON from byte array...
Jun 6, 2025This vulnerability in QNAP HBS 3 Hybrid Backup Sync allows error messages to expose sensitive application data. Attackers with local network access ca...
Jan 2, 2026Nextcloud Desktop client versions before 3.16.5 send file paths unencrypted to the server when manually locking files in end-to-end encrypted director...
Dec 5, 2025HCL AION version 2 contains a technical error disclosure vulnerability that can expose sensitive system details through error messages. This affects o...
Jan 19, 2026About CWE-209 (CWE-209)
Our database tracks 109 CVEs classified as CWE-209, with 12 rated critical and 20 rated high severity. The average CVSS score for CWE-209 vulnerabilities is 6.1.
External reference: View CWE-209 on MITRE CWE →
Monitor CWE-209 Vulnerabilities
Get alerted when new CWE-209 CVEs affect your infrastructure.
Start Monitoring Free