Vulnerabilities > Cleartext Storage of Sensitive Information

DATE CVE VULNERABILITY TITLE RISK
2022-07-01 CVE-2022-22366 Cleartext Storage of Sensitive Information vulnerability in IBM Urbancode Deploy
IBM UrbanCode Deploy (UCD) 6.2.7.15, 7.0.5.10, 7.1.2.6, and 7.2.2.1 stores user credentials in plain clear text which can be read by a local user.
local
low complexity
ibm CWE-312
2.1
2022-07-01 CVE-2022-22367 Cleartext Storage of Sensitive Information vulnerability in IBM Urbancode Deploy
IBM UrbanCode Deploy (UCD) 6.2.7.15, 7.0.5.10, 7.1.2.6, and 7.2.2.1 could disclose sensitive database information to a local user in plain text.
local
low complexity
ibm CWE-312
2.1
2022-06-30 CVE-2022-22478 Cleartext Storage of Sensitive Information vulnerability in IBM Spectrum Protect Client
IBM Spectrum Protect Client 8.1.0.0 through 8.1.14.0 stores user credentials in plain clear text which can be read by a local user.
local
low complexity
ibm CWE-312
2.1
2022-06-24 CVE-2021-41639 Cleartext Storage of Sensitive Information vulnerability in Melag FTP Server 2.2.0.4
MELAG FTP Server 2.2.0.4 stores unencrpyted passwords of FTP users in a local configuration file.
local
low complexity
melag CWE-312
2.1
2022-06-17 CVE-2021-45025 Cleartext Storage of Sensitive Information vulnerability in Rocketsoftware Ags-Zena 4.2.1
ASG technologies ( A Rocket Software Company) ASG-Zena Cross Platform Server Enterprise Edition 4.2.1 is vulnerable to Cleartext Storage of Sensitive Information in a Cookie.
network
low complexity
rocketsoftware CWE-312
5.0
2022-06-11 CVE-2017-20040 Cleartext Storage of Sensitive Information vulnerability in Sicunet Access Control 0.3205Z
A vulnerability was found in SICUNET Access Controller 0.32-05z.
local
low complexity
sicunet CWE-312
2.1
2022-06-07 CVE-2022-29620 Cleartext Storage of Sensitive Information vulnerability in Filezilla-Project Filezilla 3.59.0
** DISPUTED ** FileZilla v3.59.0 allows attackers to obtain cleartext passwords of connected SSH or FTP servers via a memory dump.- NOTE: the vendor does not consider this a vulnerability.
4.3
2022-06-02 CVE-2022-23236 Cleartext Storage of Sensitive Information vulnerability in Netapp E-Series Santricity OS Controller
E-Series SANtricity OS Controller Software versions 11.40 through 11.70.2 store the LDAP BIND password in plaintext within a file accessible only to privileged users.
local
low complexity
netapp CWE-312
2.1
2022-06-02 CVE-2022-31004 Cleartext Storage of Sensitive Information vulnerability in Mitre Cve-Services
CVEProject/cve-services is an open source project used to operate the CVE services API.
network
low complexity
mitre CWE-312
5.0
2022-05-17 CVE-2022-22484 Cleartext Storage of Sensitive Information vulnerability in IBM Spectrum Protect
IBM Spectrum Protect Operations Center 8.1.12 and 8.1.13 could allow a local attacker to obtain sensitive information, caused by plain text user account passwords potentially being stored in the browser's application command history.
local
low complexity
ibm CWE-312
2.1