Vulnerabilities > Cleartext Storage of Sensitive Information
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-04-14 | CVE-2023-22949 | Cleartext Storage of Sensitive Information vulnerability in Tigergraph Cloud and Tigergraph Enterprise An issue was discovered in TigerGraph Enterprise Free Edition 3.x. | 4.9 |
| 2023-04-12 | CVE-2023-30523 | Cleartext Storage of Sensitive Information vulnerability in Jenkins Report Portal Jenkins Report Portal Plugin 0.5 and earlier stores ReportPortal access tokens unencrypted in job config.xml files on the Jenkins controller as part of its configuration where they can be viewed by users with Item/Extended Read permission or access to the Jenkins controller file system. | 4.3 |
| 2023-04-12 | CVE-2023-30527 | Cleartext Storage of Sensitive Information vulnerability in Jenkins Wso2 Oauth Jenkins WSO2 Oauth Plugin 1.0 and earlier stores the WSO2 Oauth client secret unencrypted in the global config.xml file on the Jenkins controller where it can be viewed by users with access to the Jenkins controller file system. | 4.3 |
| 2023-04-12 | CVE-2023-30528 | Cleartext Storage of Sensitive Information vulnerability in Jenkins Wso2 Oauth Jenkins WSO2 Oauth Plugin 1.0 and earlier does not mask the WSO2 Oauth client secret on the global configuration form, increasing the potential for attackers to observe and capture it. | 6.5 |
| 2023-04-12 | CVE-2023-30530 | Cleartext Storage of Sensitive Information vulnerability in Jenkins Consul KV Builder Jenkins Consul KV Builder Plugin 2.0.13 and earlier stores the HashiCorp Consul ACL Token unencrypted in its global configuration file on the Jenkins controller where it can be viewed by users with access to the Jenkins controller file system. | 4.3 |
| 2023-04-12 | CVE-2023-30531 | Cleartext Storage of Sensitive Information vulnerability in Jenkins Consul KV Builder Jenkins Consul KV Builder Plugin 2.0.13 and earlier does not mask the HashiCorp Consul ACL Token on the global configuration form, increasing the potential for attackers to observe and capture it. | 6.5 |
| 2023-04-12 | CVE-2023-0005 | Cleartext Storage of Sensitive Information vulnerability in Paloaltonetworks Pan-Os A vulnerability in Palo Alto Networks PAN-OS software enables an authenticated administrator to expose the plaintext values of secrets stored in the device configuration and encrypted API keys. | 4.9 |
| 2023-04-11 | CVE-2023-26593 | Cleartext Storage of Sensitive Information vulnerability in Yokogawa products CENTUM series provided by Yokogawa Electric Corporation are vulnerable to cleartext storage of sensitive information. | 7.8 |
| 2023-04-03 | CVE-2023-0614 | Cleartext Storage of Sensitive Information vulnerability in Samba The fix in 4.6.16, 4.7.9, 4.8.4 and 4.9.7 for CVE-2018-10919 Confidential attribute disclosure vi LDAP filters was insufficient and an attacker may be able to obtain confidential BitLocker recovery keys from a Samba AD DC. | 6.5 |
| 2023-03-29 | CVE-2023-1683 | Cleartext Storage of Sensitive Information vulnerability in Xunruicms 4.6.1 A vulnerability was found in Xunrui CMS 4.61 and classified as problematic. | 7.5 |