Vulnerabilities > Cleartext Storage of Sensitive Information
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-04-10 | CVE-2019-0285 | Cleartext Storage of Sensitive Information vulnerability in SAP Crystal Reports 2010 The .NET SDK WebForm Viewer in SAP Crystal Reports for Visual Studio (fixed in version 2010) discloses sensitive database information including credentials which can be misused by the attacker. | 9.8 |
| 2019-04-10 | CVE-2019-3612 | Cleartext Storage of Sensitive Information vulnerability in Mcafee Data Exchange Layer and Threat Intelligence Exchange Information Disclosure vulnerability in McAfee DXL Platform and TIE Server in DXL prior to 5.0.1 HF2 and TIE prior to 2.3.1 HF1 allows Authenticated users to view sensitive information in plain text via the GUI or command line. | 4.4 |
| 2019-04-08 | CVE-2018-1882 | Cleartext Storage of Sensitive Information vulnerability in IBM products In a certain atypical IBM Spectrum Protect 7.1 and 8.1 configurations, the node password could be displayed in plain text in the IBM Spectrum Protect client trace file. | 4.7 |
| 2019-04-04 | CVE-2018-19981 | Cleartext Storage of Sensitive Information vulnerability in Amazon AWS Software Development KIT Amazon AWS SDK <=2.8.5 for Android uses Android SharedPreferences to store plain text AWS STS Temporary Credentials retrieved by AWS Cognito Identity Service. | 7.2 |
| 2019-03-26 | CVE-2019-3606 | Cleartext Storage of Sensitive Information vulnerability in Mcafee Network Security Manager Data Leakage Attacks vulnerability in the web portal component when in an MDR pair in McAfee Network Security Management (NSM) 9.1 < 9.1.7.75 (Update 4) and 9.2 < 9.2.7.31 Update2 allows administrators to view configuration information in plain text format via the GUI or GUI terminal commands. | 4.1 |
| 2019-03-21 | CVE-2018-17499 | Cleartext Storage of Sensitive Information vulnerability in Envoy Passport 2.2.5/2.4.0 Envoy Passport for Android and Envoy Passport for iPhone could allow a local attacker to obtain sensitive information, caused by the storing of unencrypted data in logs. | 5.5 |
| 2019-03-21 | CVE-2018-17489 | Cleartext Storage of Sensitive Information vulnerability in Hidglobal Easylobby Solo 11.0.4563 EasyLobby Solo could allow a local attacker to obtain sensitive information, caused by the storing of the social security number in plaintext. | 5.5 |
| 2019-03-21 | CVE-2018-12572 | Cleartext Storage of Sensitive Information vulnerability in Avast Free Antivirus Avast Free Antivirus prior to 19.1.2360 stores user credentials in memory upon login, which allows local users to obtain sensitive information by dumping AvastUI.exe application memory and parsing the data. | 7.8 |
| 2019-02-19 | CVE-2019-5765 | Cleartext Storage of Sensitive Information vulnerability in multiple products An exposed debugging endpoint in the browser in Google Chrome on Android prior to 72.0.3626.81 allowed a local attacker to obtain potentially sensitive information from process memory via a crafted Intent. | 5.5 |
| 2019-01-25 | CVE-2018-19009 | Cleartext Storage of Sensitive Information vulnerability in Pilz Pnozmulti Configurator Pilz PNOZmulti Configurator prior to version 10.9 allows an authenticated attacker with local access to the system containing the PNOZmulti Configurator software to view sensitive credential data in clear-text. | 7.8 |