Vulnerabilities > Cleartext Storage of Sensitive Information

DATE CVE VULNERABILITY TITLE RISK
2020-06-24 CVE-2020-14017 Cleartext Storage of Sensitive Information vulnerability in Naviwebs Navigate CMS 2.9
An issue was discovered in Navigate CMS 2.9 r1433.
network
low complexity
naviwebs CWE-312
7.5
2020-06-24 CVE-2020-10273 Cleartext Storage of Sensitive Information vulnerability in multiple products
MiR controllers across firmware versions 2.8.1.1 and before do not encrypt or protect in any way the intellectual property artifacts installed in the robots.
7.5
2020-06-17 CVE-2020-13637 Cleartext Storage of Sensitive Information vulnerability in Heinekingmedia Stashcat
An issue was discovered in the stashcat app through 3.9.2 for macOS, Windows, Android, iOS, and possibly other platforms.
network
low complexity
heinekingmedia CWE-312
7.5
2020-06-16 CVE-2019-17655 Cleartext Storage of Sensitive Information vulnerability in Fortinet Fortios
A cleartext storage in a file or on disk (CWE-313) vulnerability in FortiOS SSL VPN 6.2.0 through 6.2.2, 6.0.9 and earlier and FortiProxy 2.0.0, 1.2.9 and earlier may allow an attacker to retrieve a logged-in SSL VPN user's credentials should that attacker be able to read the session file stored on the targeted device's system.
network
low complexity
fortinet CWE-312
7.5
2020-06-16 CVE-2020-7513 Cleartext Storage of Sensitive Information vulnerability in Schneider-Electric Easergy T300 Firmware 1.5.2
A CWE-312: Cleartext Storage of Sensitive Information vulnerability exists in Easergy T300 (Firmware version 1.5.2 and older) which could allow an attacker to intercept traffic and read configuration data.
network
low complexity
schneider-electric CWE-312
7.5
2020-06-04 CVE-2020-9462 Cleartext Storage of Sensitive Information vulnerability in Homey Firmware and Homey PRO Firmware
An issue was discovered in all Athom Homey and Homey Pro devices up to the current version 4.2.0.
low complexity
homey CWE-312
4.3
2020-06-03 CVE-2020-13783 Cleartext Storage of Sensitive Information vulnerability in Dlink Dir-865L Firmware 1.20B01
D-Link DIR-865L Ax 1.20B01 Beta devices have Cleartext Storage of Sensitive Information.
network
low complexity
dlink CWE-312
7.5
2020-05-21 CVE-2020-9045 Cleartext Storage of Sensitive Information vulnerability in multiple products
During installation or upgrade to Software House C•CURE 9000 v2.70 and American Dynamics victor Video Management System v5.2, the credentials of the user used to perform the installation or upgrade are logged in a file.
network
low complexity
tyco johnsoncontrols CWE-312
6.5
2020-05-18 CVE-2020-12801 Cleartext Storage of Sensitive Information vulnerability in multiple products
If LibreOffice has an encrypted document open and crashes, that document is auto-saved encrypted.
network
low complexity
libreoffice opensuse CWE-312
5.3
2020-05-18 CVE-2020-12859 Cleartext Storage of Sensitive Information vulnerability in Health Covidsafe 1.0.11/1.0.16/1.0.17
Unnecessary fields in the OpenTrace/BlueTrace protocol in COVIDSafe through v1.0.17 allow a remote attacker to identify a device model by observing cleartext payload data.
network
low complexity
health CWE-312
5.3