System Data Information Exposure

Overview

System data exposure leaks internal configuration, directory paths, account information, or environment details.

Such information helps attackers understand the system and select more effective attacks.

Minimize exposed diagnostics, sanitize responses, restrict management endpoints, and review deployment error handling.

...
public void foo() {
    try {
        go();
    } catch(IOException e) {
        out.println(e.getMessage());
    }
}
...

...
public void foo() {
    try {
        go();
    } catch(IOException e) {
        System.err.println("IOException Occurred");
    }
}
...