Vulnerabilities > Cleartext Storage of Sensitive Information
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-02-02 | CVE-2021-42642 | Cleartext Storage of Sensitive Information vulnerability in Printerlogic web Stack 19.1.1.13 PrinterLogic Web Stack versions 19.1.1.13 SP9 and below are vulnerable to an Insecure Direct Object Reference (IDOR) vulnerability that allows an unauthenticated attacker to disclose the plaintext console username and password for a printer. | 7.5 |
| 2022-01-25 | CVE-2022-22789 | Cleartext Storage of Sensitive Information vulnerability in Charactell Formstorm 9.00.065 Charactell - FormStorm Enterprise Account takeover – An attacker can modify (add, remove and update) passwords file for all the users. | 7.8 |
| 2022-01-21 | CVE-2022-23129 | Cleartext Storage of Sensitive Information vulnerability in multiple products Plaintext Storage of a Password vulnerability in Mitsubishi Electric MC Works64 versions 4.04E (10.95.210.01) and prior and ICONICS GENESIS64 versions 10.90 to 10.97 allows a local authenticated attacker to gain authentication information and to access the database illegally. | 5.5 |
| 2022-01-19 | CVE-2021-31821 | Cleartext Storage of Sensitive Information vulnerability in Octopus Tentacle When the Windows Tentacle docker image starts up it logs all the commands that it runs along with the arguments, which writes the Octopus Server API key in plaintext. | 5.5 |
| 2022-01-14 | CVE-2022-20660 | Cleartext Storage of Sensitive Information vulnerability in Cisco products A vulnerability in the information storage architecture of several Cisco IP Phone models could allow an unauthenticated, physical attacker to obtain confidential information from an affected device. | 4.6 |
| 2021-12-30 | CVE-2021-20162 | Cleartext Storage of Sensitive Information vulnerability in Trendnet Tew-827Dru Firmware 2.08B01 Trendnet AC2600 TEW-827DRU version 2.08B01 stores credentials in plaintext. | 4.9 |
| 2021-12-30 | CVE-2021-20171 | Cleartext Storage of Sensitive Information vulnerability in Netgear Rax43 Firmware 1.0.3.96 Netgear RAX43 version 1.0.3.96 stores sensitive information in plaintext. | 5.5 |
| 2021-12-30 | CVE-2021-45077 | Cleartext Storage of Sensitive Information vulnerability in Netgear R6700 Firmware 1.0.4.120 Netgear Nighthawk R6700 version 1.0.4.120 stores sensitive information in plaintext. | 7.5 |
| 2021-12-29 | CVE-2021-35035 | Cleartext Storage of Sensitive Information vulnerability in Zyxel Nbg6604 Firmware A cleartext storage of sensitive information vulnerability in the Zyxel NBG6604 firmware could allow a remote, authenticated attacker to obtain sensitive information from the configuration file. | 6.5 |
| 2021-12-24 | CVE-2021-20827 | Cleartext Storage of Sensitive Information vulnerability in Idec products Plaintext storage of a password vulnerability in IDEC PLCs (FC6A Series MICROSmart All-in-One CPU module v2.32 and earlier, FC6A Series MICROSmart Plus CPU module v1.91 and earlier, WindLDR v8.19.1 and earlier, WindEDIT Lite v1.3.1 and earlier, and Data File Manager v2.12.1 and earlier) allows an attacker to obtain the PLC Web server user credentials from file servers, backup repositories, or ZLD files saved in SD cards. | 7.5 |