CWE-1230
Overview
- CWE ID
- 1230
- CWE Name
- Exposure of Sensitive Information Through Metadata
- CWE Abstraction
- Base
- CWE structure
- Simple
- CWE Status
- Incomplete
Description
The product prevents direct access to a resource containing sensitive information, but it does not sufficiently limit access to metadata that is derived from the original, sensitive information.
Extended Description
Related CWEs
| CWE ID | View ID | Nature | Ordinal |
|---|---|---|---|
| 285 | 1000 | ChildOf | Primary |