Statements (25)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
gptkb:Common_Weakness_Enumeration
|
| gptkbp:category |
Information Exposure
|
| gptkbp:cause |
Data breach
Privacy violation Security compromise |
| gptkbp:citation |
https://cwe.mitre.org/data/definitions/200.html
|
| gptkbp:describes |
A weakness where sensitive information is exposed to unauthorized actors
|
| gptkbp:example |
Web application reveals user data to unauthorized users
Error messages disclose sensitive system information |
| gptkbp:firstPublished |
2006
|
| https://www.w3.org/2000/01/rdf-schema#label |
CWE-200
|
| gptkbp:maintainedBy |
gptkb:MITRE
|
| gptkbp:mitigatedBy |
Encrypt sensitive data
Implement proper access controls Sanitize error messages |
| gptkbp:name |
Exposure of Sensitive Information to an Unauthorized Actor
|
| gptkbp:partOf |
gptkb:CWE
|
| gptkbp:relatedTo |
gptkb:CWE-522
CWE-201 CWE-209 |
| gptkbp:status |
Active
|
| gptkbp:vulnerableTo |
gptkb:CWE-200
|
| gptkbp:bfsParent |
gptkb:CWE
gptkb:CVE-2017-5754 |
| gptkbp:bfsLayer |
7
|