Vulnerabilities > Cleartext Transmission of Sensitive Information

DATE	CVE	VULNERABILITY TITLE	RISK
2025-05-13	CVE-2025-40583	A vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00-2AC2) (All versions with SINEMA Remote Connect Edge Client installed). local low complexity CWE-319	4.4
2025-04-23	CVE-2025-25046	IBM InfoSphere Information Server 11.7 DataStage Flow Designer transmits sensitive information via URL or query parameters that could be exposed to an unauthorized actor using man in the middle techniques. network high complexity CWE-319	3.7
2025-04-17	CVE-2025-43013	Cleartext Transmission of Sensitive Information vulnerability in Jetbrains Toolbox In JetBrains Toolbox App before 2.6 unencrypted credential transmission during SSH authentication was possible network low complexity jetbrains CWE-319	7.5
2025-04-08	CVE-2025-26654	SAP Commerce Cloud (Public Cloud) does not allow to disable unencrypted HTTP (port 80) entirely, but instead allows a redirect from port 80 to 443 (HTTPS). high complexity CWE-319	6.8
2025-02-12	CVE-2025-0556	Cleartext Transmission of Sensitive Information vulnerability in Progress Telerik Report Server In Progress® Telerik® Report Server, versions prior to 2025 Q1 (11.0.25.211) when using the older .NET Framework implementation, communication of non-sensitive information between the service agent process and app host process occurs over an unencrypted tunnel, which can be subjected to local network traffic sniffing. network low complexity progress CWE-319	6.5
2025-02-04	CVE-2024-43187	IBM Security Verify Access Appliance and Container 10.0.0 through 10.0.8 transmits sensitive or security-critical data in cleartext in a communication channel that can be sniffed by unauthorized actors. network high complexity CWE-319	5.9
2025-01-28	CVE-2025-0784	A vulnerability has been found in Intelbras InControl up to 2.21.58 and classified as problematic. network high complexity CWE-319	3.7
2025-01-28	CVE-2024-28786	IBM QRadar SIEM 7.5 transmits sensitive or security-critical data in cleartext in a communication channel that could be obtained by an unauthorized actor using man in the middle techniques. low complexity CWE-319	6.5
2025-01-12	CVE-2024-42181	Cleartext Transmission of Sensitive Information vulnerability in Hcltech Dryice Myxalytics 6.3 HCL MyXalytics is affected by a cleartext transmission of sensitive information vulnerability. network low complexity hcltech CWE-319	7.5
2024-12-19	CVE-2021-39081	IBM Cognos Analytics Mobile for Android 1.1.14 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. network high complexity CWE-319	5.9