Vulnerabilities > Cleartext Storage of Sensitive Information
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-21 | CVE-2023-48305 | Cleartext Storage of Sensitive Information vulnerability in Nextcloud Server Nextcloud Server provides data storage for Nextcloud, an open source cloud platform. | 4.4 |
| 2023-11-21 | CVE-2023-48700 | Cleartext Storage of Sensitive Information vulnerability in Nautobot Nautobot-Plugin-Device-Onboarding The Nautobot Device Onboarding plugin uses the netmiko and NAPALM libraries to simplify the onboarding process of a new device into Nautobot down to, in many cases, an IP Address and a Location. | 6.5 |
| 2023-10-27 | CVE-2023-46376 | Cleartext Storage of Sensitive Information vulnerability in Zentao BIZ Zentao Biz version 8.7 and before is vulnerable to Information Disclosure. | 7.5 |
| 2023-10-25 | CVE-2023-46128 | Cleartext Storage of Sensitive Information vulnerability in Networktocode Nautobot 2.0.0/2.0.1/2.0.2 Nautobot is a Network Automation Platform built as a web application atop the Django Python framework with a PostgreSQL or MySQL database. | 6.5 |
| 2023-10-25 | CVE-2023-46653 | Cleartext Storage of Sensitive Information vulnerability in Jenkins Lambdatest-Automation Jenkins lambdatest-automation Plugin 1.20.10 and earlier logs LAMBDATEST Credentials access token at the INFO level, potentially resulting in its exposure. | 6.5 |
| 2023-10-16 | CVE-2023-45151 | Cleartext Storage of Sensitive Information vulnerability in Nextcloud Server Nextcloud server is an open source home cloud platform. | 8.8 |
| 2023-10-14 | CVE-2023-44037 | Cleartext Storage of Sensitive Information vulnerability in Zpesystems Nodegrid OS An issue in ZPE Systems, Inc Nodegrid OS v.5.8.10 thru v.5.8.13 and v.5.10.3 thru v.5.10.5 allows a remote attacker to obtain sensitive information via the TACACS+ server component. | 7.5 |
| 2023-10-10 | CVE-2023-41964 | Cleartext Storage of Sensitive Information vulnerability in F5 products The BIG-IP and BIG-IQ systems do not encrypt some sensitive information written to Database (DB) variables. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated. | 6.5 |
| 2023-10-04 | CVE-2023-2809 | Cleartext Storage of Sensitive Information vulnerability in Sage 200 Spain 2023.38.001 Plaintext credential usage vulnerability in Sage 200 Spain 2023.38.001 version, the exploitation of which could allow a remote attacker to extract SQL database credentials from the DLL application. | 9.8 |
| 2023-09-27 | CVE-2023-4066 | Cleartext Storage of Sensitive Information vulnerability in Redhat products A flaw was found in Red Hat's AMQ Broker, which stores certain passwords in a secret security-properties-prop-module, defined in ActivemqArtemisSecurity CR; however, they are shown in plaintext in the StatefulSet details yaml of AMQ Broker. | 5.5 |