CWE-1230
Exposure of Sensitive Information Through Metadata
The product prevents direct access to a resource containing sensitive information, but it does not sufficiently limit access to metadata that is derived from the original, sensitive information.
No mitigation information available for this CWE.
No CAPEC attack patterns related to this CWE.