CWE-226 · Sensitive Information in Resource Not Removed Before Reuse
29 CVEs classified under CWE-226 (Sensitive Information in Resource Not Removed Before Reuse). Browse by severity and year.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2022-39393 | High | 8.6 | 2022-11-10 | Wasmtime is a standalone runtime for WebAssembly. Prior to versions 2.0.2 and 1.0.2, there is a bug in Wasmtime's implementation of its pooling instance alloca… |
CVE-2019-25560 | High | 7.5 | 2026-03-21 | Lyric Video Creator 2.1 contains a denial of service vulnerability that allows attackers to crash the application by processing malformed MP3 files. Attackers… |
CVE-2023-41138 | High | 7.5 | 2023-11-09 | The AppsAnywhere macOS client-privileged helper can be tricked into executing arbitrary commands with elevated permissions by a local user process. |
CVE-2026-5795 | High | 7.4 | 2026-04-08 | In Eclipse Jetty, the class JASPIAuthenticator initiates the authentication checks, which set two ThreadLocal variable. Upon returning from the initial check… |
CVE-2026-32960 | Medium | 6.5 | 2026-04-20 | SD-330AC and AMC Manager provided by silex technology, Inc. contain an issue with a sensitive information in resource not removed before reuse. An attacker ma… |
CVE-2025-2522 | Medium | 6.5 | 2025-07-10 | The Honeywell Experion PKS and OneWireless WDM contains Sensitive Information in Resource vulnerability in the component Control Data Access (CDA). An attac… |
CVE-2019-25645 | Medium | 6.2 | 2026-03-24 | WinAVI iPod/3GP/MP4/PSP Converter 4.4.2 contains a denial of service vulnerability that allows local attackers to crash the application by processing malformed… |
CVE-2019-25617 | Medium | 6.2 | 2026-03-22 | Ease Audio Converter 5.30 contains a denial of service vulnerability in the Audio Cutter function that allows local attackers to crash the application by proce… |
CVE-2019-25571 | Medium | 6.2 | 2026-03-21 | MediaMonkey 4.1.23 contains a denial of service vulnerability that allows local attackers to crash the application by opening a specially crafted MP3 file cont… |
CVE-2019-25563 | Medium | 6.2 | 2026-03-21 | PCHelpWareV2 1.0.0.5 contains a denial of service vulnerability that allows local attackers to crash the application by supplying a malformed image file. Attac… |
CVE-2019-25553 | Medium | 6.2 | 2026-03-21 | CEWE PHOTO IMPORTER 6.4.3 contains a denial of service vulnerability that allows local attackers to crash the application by importing a specially crafted imag… |
CVE-2025-48066 | Medium | 6.0 | 2025-05-22 | wire-webapp is the web application for the open-source messaging service Wire. A bug fix caused a regression causing an issue with function to delete local dat… |
CVE-2024-21850 | Medium | 6.0 | 2024-11-13 | Sensitive information in resource not removed before reuse in some Intel(R) TDX Seamldr module software before version 1.5.02.00 may allow a privileged user to… |
CVE-2019-25657 | Medium | 5.5 | 2026-04-05 | AnyBurn 4.3 x86 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string to the… |
CVE-2024-32036 | Medium | 5.3 | 2024-04-15 | ImageSharp is a 2D graphics API. A data leakage flaw was found in ImageSharp's JPEG and TGA decoders. This vulnerability is triggered when an attacker passes a… |
CVE-2025-33196 | Medium | 4.4 | 2025-11-25 | NVIDIA DGX Spark GB10 contains a vulnerability in SROOT firmware, where an attacker could cause a resource to be reused. A successful exploit of this vulnerabi… |
CVE-2025-20622 | Low | 3.8 | 2025-11-11 | Sensitive information uncleared in resource before release for reuse for some Intel(R) NPU Drivers for Windows before version 32.0.100.4023 within Ring 3: User… |
CVE-2024-7883 | Low | 3.7 | 2024-10-31 | When using Arm Cortex-M Security Extensions (CMSE), Secure stack contents can be leaked to Non-secure state via floating-point registers when a Secure to Non… |
CVE-2025-33198 | Low | 3.3 | 2025-11-25 | NVIDIA DGX Spark GB10 contains a vulnerability in SROOT firmware, where an attacker could cause a resource to be reused. A successful exploit of this vulnerabi… |
CVE-2019-1573 | Low | 2.5 | 2019-04-09 | GlobalProtect Agent 4.1.0 for Windows and GlobalProtect Agent 4.1.10 and earlier for macOS may allow a local authenticated attacker who has compromised the end… |