Vulnerabilities > Cleartext Storage of Sensitive Information

DATE CVE VULNERABILITY TITLE RISK
2023-06-09 CVE-2023-27706 Cleartext Storage of Sensitive Information vulnerability in Bitwarden
Bitwarden Windows desktop application versions prior to v2023.4.0 store biometric keys in Windows Credential Manager, accessible to other local unprivileged processes.
local
low complexity
bitwarden CWE-312
7.1
2023-06-01 CVE-2023-28713 Cleartext Storage of Sensitive Information vulnerability in Contec Conprosys HMI System
Plaintext storage of a password exists in CONPROSYS HMI System (CHS) versions prior to 3.5.3.
network
low complexity
contec CWE-312
8.1
2023-05-31 CVE-2023-28345 Cleartext Storage of Sensitive Information vulnerability in Faronics Insight 10.0.19045
An issue was discovered in Faronics Insight 10.0.19045 on Windows.
low complexity
faronics CWE-312
4.6
2023-05-24 CVE-2023-2863 Cleartext Storage of Sensitive Information vulnerability in Simpledesign Diary With Lock: Daily Journal 1.012.Gp.B
A vulnerability has been found in Simple Design Daily Journal 1.012.GP.B on Android and classified as problematic.
local
low complexity
simpledesign CWE-312
5.5
2023-05-19 CVE-2023-22878 Cleartext Storage of Sensitive Information vulnerability in IBM Infosphere Information Server 11.7
IBM InfoSphere Information Server 11.7 stores user credentials in plain clear text which can be read by a local user.
local
low complexity
ibm CWE-312
5.5
2023-05-16 CVE-2023-32983 Cleartext Storage of Sensitive Information vulnerability in Jenkins Ansible
Jenkins Ansible Plugin 204.v8191fd551eb_f and earlier does not mask extra variables displayed on the configuration form, increasing the potential for attackers to observe and capture them.
network
low complexity
jenkins CWE-312
5.3
2023-05-15 CVE-2023-20914 Cleartext Storage of Sensitive Information vulnerability in Google Android 11.0
In onSetRuntimePermissionGrantStateByDeviceAdmin of AdminRestrictedPermissionsUtils.java, there is a possible way for the work profile to read SMS messages due to a permissions bypass.
local
low complexity
google CWE-312
5.5
2023-05-15 CVE-2023-31408 Cleartext Storage of Sensitive Information vulnerability in Sick products
Cleartext Storage of Sensitive Information in SICK FTMg AIR FLOW SENSOR with Partnumbers 1100214, 1100215, 1100216, 1120114, 1120116, 1122524, 1122526 allows a remote attacker to potentially steal user credentials that are stored in the user’s browsers local storage via cross-site-scripting attacks.
network
low complexity
sick CWE-312
7.5
2023-05-10 CVE-2023-24586 Cleartext Storage of Sensitive Information vulnerability in Seiko-Sol products
Cleartext storage of sensitive information exists in SkyBridge MB-A100/110 firmware Ver.
network
low complexity
seiko-sol CWE-312
6.5
2023-04-28 CVE-2023-30853 Cleartext Storage of Sensitive Information vulnerability in Gradle Build Action
Gradle Build Action allows users to execute a Gradle Build in their GitHub Actions workflow.
network
low complexity
gradle CWE-312
6.5