CWE-359: Exposure of Private Personal Information to an Unauthorized Actor

"The product does not properly prevent a person's private, personal information from being accessed by actors who either (1) are not explicitly authorized to access the information or (2) do not have the implicit consent of the person about whom the information is collected." - Entry from the Common Weakness Enumeration For more info visit <a href="https://cwe.mitre.org/data/definitions/359.html" target="_blank" rel="noopener noreferrer">CWE-359</a>