CWE-204 - Observable Response Discrepancy

Description

The product provides different responses to incoming requests in a way that reveals internal state information to an unauthorized actor outside of the intended control sphere.

Latest vulnerabilities for CWE-204

Multiple vulnerabilities in Dell EMC Data Computing Appliance (DCA) 2022-10-25
High Yes

Information disclosure in Sensormatic Electronics C-CURE 9000 2022-10-12
Low Yes

Multiple vulnerabilities in SonicWall SMA 100 2021-12-21
Medium Yes

Multiple vulnerabilities in InHand Networks IR615 Router 2021-10-08
High No

User enumeration in Symfony 2021-05-12
Low Yes

Information disclosure in PHP-Fusion 2021-01-03
Low No

Multiple vulnerabilities in Intel RAPL Interface 2020-11-11
Low Yes

Multiple vulnerabilities in TYPO3 2020-05-15
High Yes

References

Description of CWE-204 on Mitre website