CWE-538

Overview

CWE ID
538

CWE Name
Insertion of Sensitive Information into Externally-Accessible File or Directory

CWE Abstraction
Base

CWE structure
Simple

CWE Status
Draft

Description

The product places sensitive information into files or directories that are accessible to actors who are allowed to have access to the files, but not to the sensitive information.

Extended Description

Related CWEs

CWE ID	View ID	Nature	Ordinal
200	1000	ChildOf	Primary

Related CVEs

CVE
CVE-2021-21250
CVE-2018-11798
CVE-2019-10320
CVE-2016-10399
CVE-2021-40363
CVE-2019-12623
CVE-2018-10590
CVE-2018-20932
CVE-2018-16970
CVE-2017-5387
CVE-2022-27195
CVE-2022-26329
CVE-2017-9947
CVE-2023-4480
CVE-2022-4318
CVE-2023-4595
CVE-2023-46723
CVE-2023-38558
CVE-2024-22433
CVE-2024-22045
CVE-2024-0191
CVE-2023-38558
CVE-2024-22433
CVE-2024-22045
CVE-2024-0191