Vulnerabilities > Cleartext Storage of Sensitive Information

DATE CVE VULNERABILITY TITLE RISK
2023-07-19 CVE-2023-3762 Cleartext Storage of Sensitive Information vulnerability in Intergard Smartgard Silver With Matrix Keyboard 8.7.0
A vulnerability was found in Intergard SGS 8.7.0.
network
low complexity
intergard CWE-312
7.5
2023-07-13 CVE-2023-31821 Cleartext Storage of Sensitive Information vulnerability in Albis 13.6.1
An issue found in ALBIS Co.
network
low complexity
albis CWE-312
7.5
2023-07-12 CVE-2023-20207 Cleartext Storage of Sensitive Information vulnerability in DUO Authentication Proxy 5.8.1/6.0.0
A vulnerability in the logging component of Cisco Duo Authentication Proxy could allow an authenticated, remote attacker to view sensitive information in clear text on an affected system. This vulnerability exists because certain unencrypted credentials are stored.
network
low complexity
duo CWE-312
6.5
2023-07-11 CVE-2022-22302 Cleartext Storage of Sensitive Information vulnerability in Fortinet Fortiauthenticator and Fortios
A clear text storage of sensitive information (CWE-312) vulnerability in both FortiGate version 6.4.0 through 6.4.1, 6.2.0 through 6.2.9 and 6.0.0 through 6.0.13 and FortiAuthenticator version 5.5.0 and all versions of 6.1 and 6.0 may allow a local unauthorized party to retrieve the Fortinet private keys used to establish secure communication with both Apple Push Notification and Google Cloud Messaging services, via accessing the files on the filesystem.
local
low complexity
fortinet CWE-312
3.3
2023-07-10 CVE-2023-35699 Cleartext Storage of Sensitive Information vulnerability in Sick Icr890-4 Firmware
Cleartext Storage on Disk in the SICK ICR890-4 could allow an unauthenticated attacker with local access to the device to disclose sensitive information by accessing a SD card.
low complexity
sick CWE-312
4.6
2023-07-03 CVE-2023-3395 Cleartext Storage of Sensitive Information vulnerability in Ovarro products
?All versions of the TWinSoft Configuration Tool store encrypted passwords as plaintext in memory.
network
low complexity
ovarro CWE-312
6.5
2023-06-21 CVE-2023-27243 Cleartext Storage of Sensitive Information vulnerability in Makves Dcap 3.0.0.122/3.0.0.183
An access control issue in Makves DCAP v3.0.0.122 allows unauthenticated attackers to obtain cleartext credentials via a crafted web request to the product API.
network
low complexity
makves CWE-312
7.5
2023-06-15 CVE-2022-33159 Cleartext Storage of Sensitive Information vulnerability in IBM Security Directory Suite VA 8.0.1/8.0.1.19
IBM Security Directory Suite VA 8.0.1 through 8.0.1.19 stores user credentials in plain clear text which can be read by an authenticated user.
network
low complexity
ibm CWE-312
6.5
2023-06-12 CVE-2023-1897 Cleartext Storage of Sensitive Information vulnerability in Atlascopco Power Focus 6000 Firmware
Atlas Copco Power Focus 6000 web server does not sanitize the login information stored by the authenticated user’s browser, which could allow an attacker with access to the user’s computer to gain credential information of the controller.
network
low complexity
atlascopco CWE-312
7.5
2023-06-11 CVE-2023-22584 Cleartext Storage of Sensitive Information vulnerability in Danfoss Ak-Em100 Firmware
The Danfoss AK-EM100 stores login credentials in cleartext.
network
low complexity
danfoss CWE-312
7.5