CWE-536

Servlet Runtime Error Message Containing Sensitive Information

Variant

Incomplete

Description

A servlet error message indicates that there exists an unhandled exception in the web application code and may provide useful information to an attacker.

Parent Weaknesses (ChildOf)

CWE-211: Externally-Generated Error Mes...

Common Consequences

Scope

Confidentiality

Impact

Read Application Data

Applicable Platforms

Java

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CWE-536

Servlet Runtime Error Message Containing Sensitive Information

Description

Relationships

Common Consequences

Applicable Platforms