Vulnerabilities > Cleartext Storage of Sensitive Information
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-07-13 | CVE-2023-37468 | Cleartext Storage of Sensitive Information vulnerability in THM Feedbacksystem Feedbacksystem is a personalized feedback system for students using artificial intelligence. | 5.5 |
| 2023-07-13 | CVE-2023-31821 | Cleartext Storage of Sensitive Information vulnerability in Albis 13.6.1 An issue found in ALBIS Co. | 7.5 |
| 2023-07-12 | CVE-2023-20207 | Cleartext Storage of Sensitive Information vulnerability in DUO Authentication Proxy 5.8.1/6.0.0 A vulnerability in the logging component of Cisco Duo Authentication Proxy could allow an authenticated, remote attacker to view sensitive information in clear text on an affected system. This vulnerability exists because certain unencrypted credentials are stored. | 6.5 |
| 2023-07-11 | CVE-2022-22302 | Cleartext Storage of Sensitive Information vulnerability in Fortinet Fortiauthenticator and Fortios A clear text storage of sensitive information (CWE-312) vulnerability in both FortiGate version 6.4.0 through 6.4.1, 6.2.0 through 6.2.9 and 6.0.0 through 6.0.13 and FortiAuthenticator version 5.5.0 and all versions of 6.1 and 6.0 may allow a local unauthorized party to retrieve the Fortinet private keys used to establish secure communication with both Apple Push Notification and Google Cloud Messaging services, via accessing the files on the filesystem. | 3.3 |
| 2023-07-10 | CVE-2023-35699 | Cleartext Storage of Sensitive Information vulnerability in Sick Icr890-4 Firmware Cleartext Storage on Disk in the SICK ICR890-4 could allow an unauthenticated attacker with local access to the device to disclose sensitive information by accessing a SD card. | 4.6 |
| 2023-07-03 | CVE-2023-3395 | Cleartext Storage of Sensitive Information vulnerability in Ovarro products ?All versions of the TWinSoft Configuration Tool store encrypted passwords as plaintext in memory. | 6.5 |
| 2023-06-21 | CVE-2023-27243 | Cleartext Storage of Sensitive Information vulnerability in Makves Dcap 3.0.0.122/3.0.0.183 An access control issue in Makves DCAP v3.0.0.122 allows unauthenticated attackers to obtain cleartext credentials via a crafted web request to the product API. | 7.5 |
| 2023-06-15 | CVE-2022-33159 | Cleartext Storage of Sensitive Information vulnerability in IBM Security Directory Suite VA IBM Security Directory Suite VA 8.0.1 through 8.0.1.19 stores user credentials in plain clear text which can be read by an authenticated user. | 6.5 |
| 2023-06-12 | CVE-2023-1897 | Cleartext Storage of Sensitive Information vulnerability in Atlascopco Power Focus 6000 Firmware Atlas Copco Power Focus 6000 web server does not sanitize the login information stored by the authenticated user’s browser, which could allow an attacker with access to the user’s computer to gain credential information of the controller. | 7.5 |
| 2023-06-11 | CVE-2023-22584 | Cleartext Storage of Sensitive Information vulnerability in Danfoss Ak-Em100 Firmware The Danfoss AK-EM100 stores login credentials in cleartext. | 7.5 |