CWE-199

GPTKB entity

Statements (14)
Predicate Object
gptkbp:instance_of gptkb:Common_Weakness_Enumeration
gptkbp:description The software does not properly protect sensitive information in error messages.
gptkbp:difficulty_levels gptkb:medium
gptkbp:example Displaying stack traces in production environments.
https://www.w3.org/2000/01/rdf-schema#label CWE-199
gptkbp:impact Information disclosure
gptkbp:is_vulnerable_to gptkb:High
gptkbp:name Information Exposure Through an Error Message
gptkbp:prevention Sanitize error messages.
gptkbp:related_to gptkb:CWE-200
gptkb:CWE-209
gptkbp:bfsParent gptkb:CWE-74
gptkb:CWE-130
gptkbp:bfsLayer 8