Vulnerabilities > Cleartext Transmission of Sensitive Information
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-11-18 | CVE-2021-37939 | Cleartext Transmission of Sensitive Information vulnerability in Elastic Kibana It was discovered that Kibana’s JIRA connector & IBM Resilient connector could be used to return HTTP response data on internal hosts, which may be intentionally hidden from public view. | 2.7 |
| 2021-11-15 | CVE-2021-38978 | Cleartext Transmission of Sensitive Information vulnerability in IBM products IBM Tivoli Key Lifecycle Manager 3.0, 3.0.1, 4.0, and 4.1 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. | 5.9 |
| 2021-11-12 | CVE-2021-3792 | Cleartext Transmission of Sensitive Information vulnerability in Binatoneglobal products Some device communications in some Motorola-branded Binatone Hubble Cameras with backend Hubble services are not encrypted which could lead to the communication channel being accessible by an attacker. | 5.3 |
| 2021-11-09 | CVE-2021-40366 | Cleartext Transmission of Sensitive Information vulnerability in Siemens Climatix Pol909 Firmware A vulnerability has been identified in Climatix POL909 (AWB module) (All versions < V11.42), Climatix POL909 (AWM module) (All versions < V11.34). | 7.4 |
| 2021-11-08 | CVE-2020-4152 | Cleartext Transmission of Sensitive Information vulnerability in IBM Qradar Network Security IBM QRadar Network Security 5.4.0 and 5.5.0 transmits sensitive or security-critical data in cleartext in a communication channel that can be obtained using man in the middle techniques. | 5.9 |
| 2021-11-05 | CVE-2021-3774 | Cleartext Transmission of Sensitive Information vulnerability in Meross Mss550X Firmware 3.1.3 Meross Smart Wi-Fi 2 Way Wall Switch (MSS550X), on its 3.1.3 version and before, creates an open Wi-Fi Access Point without the required security measures in its initial setup. | 6.5 |
| 2021-11-05 | CVE-2021-29753 | Cleartext Transmission of Sensitive Information vulnerability in IBM products IBM Business Automation Workflow 18. | 5.9 |
| 2021-11-02 | CVE-2021-43270 | Cleartext Transmission of Sensitive Information vulnerability in Datalust Seq.App.Emailplus 3.1.0 Datalust Seq.App.EmailPlus (aka seq-app-htmlemail) 3.1.0-dev-00148, 3.1.0-dev-00170, and 3.1.0-dev-00176 can use cleartext SMTP on port 25 in some cases where encryption on port 465 was intended. | 7.5 |
| 2021-10-05 | CVE-2021-39882 | Cleartext Transmission of Sensitive Information vulnerability in Gitlab In all versions of GitLab CE/EE, provided a user ID, anonymous users can use a few endpoints to retrieve information about any GitLab user. | 5.3 |
| 2021-09-29 | CVE-2020-20128 | Cleartext Transmission of Sensitive Information vulnerability in Laracms Project Laracms 1.0.1 LaraCMS v1.0.1 transmits sensitive information in cleartext which can be intercepted by attackers. | 7.5 |