CWE-211: Externally-Generated Error Message Containing Sensitive Information

Description

The product performs an operation that triggers an external diagnostic or error message that is not directly generated or controlled by the product, such as an error generated by the programming language interpreter that a software application uses. The error can contain sensitive system information.

Submission Date :

July 19, 2006, midnight

Modification Date :

2023-06-29 00:00:00+00:00

Organization :

MITRE

Related Weaknesses

This table shows the weaknesses and high level categories that are related to this weakness. These relationships are defined to give an overview of the different insight to similar items that may exist at higher and lower levels of abstraction.

CWE-209: Generation of Error Message Containing Sensitive Information
Go to
CWE-535: Exposure of Information Through Shell Error Message
Go to
CWE-536: Servlet Runtime Error Message Containing Sensitive Information
Go to
CWE-537: Java Runtime Error Message Containing Sensitive Information
Go to

Visit http://cwe.mitre.org/ for more details.