Statements (14)
Predicate | Object |
---|---|
gptkbp:instance_of |
gptkb:Common_Weakness_Enumeration
|
gptkbp:description |
The software does not properly protect sensitive information in error messages.
|
gptkbp:difficulty_levels |
gptkb:medium
|
gptkbp:example |
Displaying stack traces in production environments.
|
https://www.w3.org/2000/01/rdf-schema#label |
CWE-199
|
gptkbp:impact |
Information disclosure
|
gptkbp:is_vulnerable_to |
gptkb:High
|
gptkbp:name |
Information Exposure Through an Error Message
|
gptkbp:prevention |
Sanitize error messages.
|
gptkbp:related_to |
gptkb:CWE-200
gptkb:CWE-209 |
gptkbp:bfsParent |
gptkb:CWE-74
gptkb:CWE-130 |
gptkbp:bfsLayer |
8
|