CWE•Base•Incomplete•20 recent CVEs
CWE-532Insertion of Sensitive Information into Log File
Description
The product writes sensitive information to a log file.
Common consequences
- Confidentiality→Read Application DataLogging sensitive user data, full path names, or system information often provides attackers with an additional, less-protected path to acquiring the information.
Potential mitigations
- Architecture and Design,ImplementationConsider seriously the sensitivity of the information written into log files. Do not write secrets into the log files.
- DistributionRemove debug log files before deploying the application into production.
- OperationProtect log files against unauthorized read/write.
- ImplementationAdjust configurations appropriately when software is transitioned from a debug state to production.
Related CWEs
Recent CVEs classified under this CWE
CVE-2026-455815.52026-06-08CVE-2026-502058.22026-06-04CVE-2026-456796.52026-06-02CVE-2026-406197.82026-06-02CVE-2026-492009.82026-05-29CVE-2026-450402026-05-28CVE-2026-67202026-05-28CVE-2026-411856.52026-05-28CVE-2026-411846.52026-05-28CVE-2026-329962026-05-28CVE-2026-55155.52026-05-27CVE-2026-26075.12026-05-27CVE-2025-137555.52026-05-26CVE-2026-251938.12026-05-25CVE-2026-86717.52026-05-22CVE-2026-440527.52026-05-21CVE-2026-202397.52026-05-20CVE-2026-445167.62026-05-14CVE-2026-444795.52026-05-13CVE-2026-412196.52026-05-13