Description
The product does not properly prevent sensitive system-level information from being accessed by unauthorized actors who do not have the same level of access to the underlying system as the product does.
CVE vulnerabilities with CWE-497 (343)
10.0
CVSS
CRITICAL
CVE-2025-10264
pub. 2025-09-12
9.9
CVSS
CRITICAL
CVE-2025-47699
pub. 2025-10-23
9.9
CVSS
CRITICAL
CVE-2025-44823
pub. 2025-10-07
9.8
CVSS
CRITICAL
CVE-2025-6561
pub. 2025-06-26
9.8
CVSS
CRITICAL
CVE-2025-1144
pub. 2025-02-11
9.8
CVSS
CRITICAL
CVE-2024-36554
pub. 2025-02-06
9.8
CVSS
CRITICAL
CVE-2020-25179
pub. 2020-12-14
9.5
CVSS
CRITICAL
CVE-2025-11545
pub. 2025-12-22
9.3
CVSS
CRITICAL
CVE-2025-15623
pub. 2026-04-17
9.3
CVSS
CRITICAL
CVE-2025-5893
pub. 2025-06-09
9.3
CVSS
CRITICAL
CVE-2023-32550
pub. 2023-06-06
8.8
CVSS
HIGH
CVE-2026-34413
pub. 2026-04-22
8.8
CVSS
HIGH
CVE-2025-12779
pub. 2025-11-05
8.8
CVSS
HIGH
CVE-2022-1902
pub. 2022-09-01
8.7
CVSS
HIGH
CVE-2026-56124
pub. 2026-06-29
8.7
CVSS
HIGH
CVE-2018-25358
pub. 2026-05-23
8.7
CVSS
HIGH
CVE-2025-59098
pub. 2026-01-26
8.7
CVSS
HIGH
CVE-2025-14712
pub. 2025-12-15
8.7
CVSS
HIGH
CVE-2022-4985
pub. 2025-11-14
8.7
CVSS
HIGH
CVE-2025-54459
pub. 2025-10-29
Showing 20 of 343 vulnerabilities