Vulnerabilities > Cleartext Storage of Sensitive Information
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-09-05 | CVE-2019-15947 | Cleartext Storage of Sensitive Information vulnerability in Bitcoin Core 0.18.0 In Bitcoin Core 0.18.0, bitcoin-qt stores wallet.dat data unencrypted in memory. | 7.5 |
| 2019-08-23 | CVE-2019-15508 | Cleartext Storage of Sensitive Information vulnerability in Octopus Server and Tentacle In Octopus Tentacle versions 3.0.8 to 5.0.0, when a web request proxy is configured, an authenticated user (in certain limited OctopusPrintVariables circumstances) could trigger a deployment that writes the web request proxy password to the deployment log in cleartext. | 6.5 |
| 2019-08-23 | CVE-2019-15507 | Cleartext Storage of Sensitive Information vulnerability in Octopus Server In Octopus Deploy versions 2018.8.4 to 2019.7.6, when a web request proxy is configured, an authenticated user (in certain limited special-characters circumstances) could trigger a deployment that writes the web request proxy password to the deployment log in cleartext. | 6.5 |
| 2019-08-07 | CVE-2019-10099 | Cleartext Storage of Sensitive Information vulnerability in Apache Spark Prior to Spark 2.3.3, in certain situations Spark would write user data to local disk unencrypted, even if spark.io.encryption.enabled=true. | 7.5 |
| 2019-07-22 | CVE-2019-13096 | Cleartext Storage of Sensitive Information vulnerability in Tronlink Wallet 2.2.0 TronLink Wallet 2.2.0 stores user wallet keystore in plaintext and places them in insecure storage. | 9.8 |
| 2019-07-22 | CVE-2019-13100 | Cleartext Storage of Sensitive Information vulnerability in Send-Anywhere Send Anywhere 9.4.18 The Send Anywhere application 9.4.18 for Android stores confidential information insecurely on the system (i.e., in cleartext), which allows a non-root user to find out the username/password of a valid user via /data/data/com.estmob.android.sendanywhere/shared_prefs/sendanywhere_device.xml. | 6.5 |
| 2019-07-22 | CVE-2019-13099 | Cleartext Storage of Sensitive Information vulnerability in Momo Project Momo 2.1.9 The Momo application 2.1.9 for Android stores confidential information insecurely on the system (i.e., in cleartext), which allows a non-root user to find out the username/password of a valid user and a user's access token via Logcat. | 6.5 |
| 2019-07-11 | CVE-2019-10351 | Cleartext Storage of Sensitive Information vulnerability in Jenkins Caliper CI 2.3 Jenkins Caliper CI Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system. | 8.8 |
| 2019-07-11 | CVE-2019-10350 | Cleartext Storage of Sensitive Information vulnerability in Jenkins Port Allocator Jenkins Port Allocator Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system. | 8.8 |
| 2019-07-11 | CVE-2019-10348 | Cleartext Storage of Sensitive Information vulnerability in Jenkins Gogs Jenkins Gogs Plugin stored credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system. | 8.8 |