Vulnerabilities > Cleartext Transmission of Sensitive Information

DATE CVE VULNERABILITY TITLE RISK
2022-01-12 CVE-2022-23105 Cleartext Transmission of Sensitive Information vulnerability in Jenkins Active Directory
Jenkins Active Directory Plugin 2.25 and earlier does not encrypt the transmission of data between the Jenkins controller and Active Directory servers in most configurations.
2.9
2021-12-30 CVE-2021-20154 Cleartext Transmission of Sensitive Information vulnerability in Trendnet Tew-827Dru Firmware 2.08B01
Trendnet AC2600 TEW-827DRU version 2.08B01 contains an security flaw in the web interface.
network
trendnet CWE-319
4.3
2021-12-30 CVE-2021-20169 Cleartext Transmission of Sensitive Information vulnerability in Netgear Rax43 Firmware 1.0.3.96
Netgear RAX43 version 1.0.3.96 does not utilize secure communications to the web interface.
local
low complexity
netgear CWE-319
7.2
2021-12-30 CVE-2021-20174 Cleartext Transmission of Sensitive Information vulnerability in Netgear R6700 Firmware 1.0.4.120
Netgear Nighthawk R6700 version 1.0.4.120 does not utilize secure communication methods to the web interface.
network
low complexity
netgear CWE-319
5.0
2021-12-30 CVE-2021-20175 Cleartext Transmission of Sensitive Information vulnerability in Netgear R6700 Firmware 1.0.4.120
Netgear Nighthawk R6700 version 1.0.4.120 does not utilize secure communication methods to the SOAP interface.
network
low complexity
netgear CWE-319
5.0
2021-12-27 CVE-2021-4161 Cleartext Transmission of Sensitive Information vulnerability in Moxa products
The affected products contain vulnerable firmware, which could allow an attacker to sniff the traffic and decrypt login credential details.
network
low complexity
moxa CWE-319
5.0
2021-12-16 CVE-2021-45100 Cleartext Transmission of Sensitive Information vulnerability in Ksmbd Project Ksmbd
The ksmbd server through 3.4.2, as used in the Linux kernel through 5.15.8, sometimes communicates in cleartext even though encryption has been enabled.
network
low complexity
ksmbd-project CWE-319
5.0
2021-11-18 CVE-2021-37939 Cleartext Transmission of Sensitive Information vulnerability in Elastic Kibana
It was discovered that Kibana’s JIRA connector & IBM Resilient connector could be used to return HTTP response data on internal hosts, which may be intentionally hidden from public view.
network
low complexity
elastic CWE-319
4.0
2021-11-12 CVE-2021-3792 Cleartext Transmission of Sensitive Information vulnerability in Binatoneglobal products
Some device communications in some Motorola-branded Binatone Hubble Cameras with backend Hubble services are not encrypted which could lead to the communication channel being accessible by an attacker.
network
low complexity
binatoneglobal CWE-319
5.0
2021-11-10 CVE-2021-42111 Cleartext Transmission of Sensitive Information vulnerability in Rcdevs Openotp Token 1.4.13/1.4.14
An issue was discovered in the RCDevs OpenOTP app 1.4.13 and 1.4.14 for iOS.
local
low complexity
rcdevs CWE-319
2.1