Vulnerabilities > Cleartext Transmission of Sensitive Information
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-05-07 | CVE-2021-27574 | Cleartext Transmission of Sensitive Information vulnerability in Remotemouse Emote Remote Mouse An issue was discovered in Emote Remote Mouse through 4.0.0.0. | 8.1 |
| 2021-04-28 | CVE-2021-31815 | Cleartext Transmission of Sensitive Information vulnerability in Google Google/Apple Exposure Notifications 20210427 GAEN (aka Google/Apple Exposure Notifications) through 2021-04-27 on Android allows attackers to obtain sensitive information, such as a user's location history, in-person social graph, and (sometimes) COVID-19 infection status, because Rolling Proximity Identifiers and MAC addresses are written to the Android system log, and many Android devices have applications (preinstalled by the hardware manufacturer or network operator) that read system log data and send it to third parties. | 3.3 |
| 2021-04-27 | CVE-2021-31671 | Cleartext Transmission of Sensitive Information vulnerability in Pgsync Project Pgsync pgsync before 0.6.7 is affected by Information Disclosure of sensitive information. | 7.5 |
| 2021-04-20 | CVE-2020-26197 | Cleartext Transmission of Sensitive Information vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS 8.1.0 - 9.1.0 contains an LDAP Provider inability to connect over TLSv1.2 vulnerability. | 9.1 |
| 2021-04-19 | CVE-2021-20992 | Cleartext Transmission of Sensitive Information vulnerability in Fibaro Home Center 2 Firmware and Home Center Lite Firmware In Fibaro Home Center 2 and Lite devices in all versions provide a web based management interface over unencrypted HTTP protocol. | 7.5 |
| 2021-04-15 | CVE-2021-23884 | Cleartext Transmission of Sensitive Information vulnerability in Mcafee Content Security Reporter Cleartext Transmission of Sensitive Information vulnerability in the ePO Extension of McAfee Content Security Reporter (CSR) prior to 2.8.0 allows an ePO administrator to view the unencrypted password of the McAfee Web Gateway (MWG) or the password of the McAfee Web Gateway Cloud Server (MWGCS) read only user used to retrieve log files for analysis in CSR. | 4.3 |
| 2021-04-15 | CVE-2020-7308 | Cleartext Transmission of Sensitive Information vulnerability in Mcafee Endpoint Security Cleartext Transmission of Sensitive Information between McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 February 2021 Update and McAfee Global Threat Intelligence (GTI) servers using DNS allows a remote attacker to view the requests from ENS and responses from GTI over DNS. | 6.5 |
| 2021-03-25 | CVE-2021-27194 | Cleartext Transmission of Sensitive Information vulnerability in Netop Vision PRO Cleartext transmission of sensitive information in Netop Vision Pro up to and including 9.7.1 allows a remote unauthenticated attacker to gather credentials including Windows login usernames and passwords. | 8.8 |
| 2021-03-17 | CVE-2020-35456 | Cleartext Transmission of Sensitive Information vulnerability in Taidii Diibear 2.4.0 The Taidii Diibear Android application 2.4.0 and all its derivatives allow attackers to view private chat messages and media files via logcat because of excessive logging. | 5.5 |
| 2021-03-09 | CVE-2021-3417 | Cleartext Transmission of Sensitive Information vulnerability in Lenovo Xclarity Orchestrator 1.0.0/1.1.0/1.2.0 An internal product security audit of LXCO, prior to version 1.2.2, discovered that credentials for Lenovo XClarity Administrator (LXCA), if added as a Resource Manager, are encoded then written to an internal LXCO log file each time a session is established with LXCA. | 4.9 |