Vulnerabilities > Cleartext Transmission of Sensitive Information
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-04-26 | CVE-2021-3494 | Cleartext Transmission of Sensitive Information vulnerability in Theforeman Foreman A smart proxy that provides a restful API to various sub-systems of the Foreman is affected by the flaw which can cause a Man-in-the-Middle attack. | 5.9 |
| 2021-04-20 | CVE-2020-26197 | Cleartext Transmission of Sensitive Information vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS 8.1.0 - 9.1.0 contains an LDAP Provider inability to connect over TLSv1.2 vulnerability. | 9.1 |
| 2021-04-19 | CVE-2021-20992 | Cleartext Transmission of Sensitive Information vulnerability in Fibaro Home Center 2 Firmware and Home Center Lite Firmware In Fibaro Home Center 2 and Lite devices in all versions provide a web based management interface over unencrypted HTTP protocol. | 7.5 |
| 2021-04-15 | CVE-2021-23884 | Cleartext Transmission of Sensitive Information vulnerability in Mcafee Content Security Reporter Cleartext Transmission of Sensitive Information vulnerability in the ePO Extension of McAfee Content Security Reporter (CSR) prior to 2.8.0 allows an ePO administrator to view the unencrypted password of the McAfee Web Gateway (MWG) or the password of the McAfee Web Gateway Cloud Server (MWGCS) read only user used to retrieve log files for analysis in CSR. | 4.3 |
| 2021-04-15 | CVE-2020-7308 | Cleartext Transmission of Sensitive Information vulnerability in Mcafee Endpoint Security Cleartext Transmission of Sensitive Information between McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 February 2021 Update and McAfee Global Threat Intelligence (GTI) servers using DNS allows a remote attacker to view the requests from ENS and responses from GTI over DNS. | 6.5 |
| 2021-04-14 | CVE-2021-27251 | Cleartext Transmission of Sensitive Information vulnerability in Netgear products This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR Nighthawk R7800. | 8.8 |
| 2021-03-25 | CVE-2021-27194 | Cleartext Transmission of Sensitive Information vulnerability in Netop Vision PRO Cleartext transmission of sensitive information in Netop Vision Pro up to and including 9.7.1 allows a remote unauthenticated attacker to gather credentials including Windows login usernames and passwords. | 8.8 |
| 2021-03-19 | CVE-2021-21387 | Cleartext Transmission of Sensitive Information vulnerability in Wrongthink Wrongthink peer-to-peer, end-to-end encrypted messenger with PeerJS and Axolotl ratchet. | 7.5 |
| 2021-03-17 | CVE-2019-18231 | Cleartext Transmission of Sensitive Information vulnerability in Advantech Spectre RT Ert351 Firmware 5.1.3 Advantech Spectre RT ERT351 Versions 5.1.3 and prior logins and passwords are transmitted in clear text form, which may allow an attacker to intercept the request. | 7.5 |
| 2021-03-17 | CVE-2020-35456 | Cleartext Transmission of Sensitive Information vulnerability in Taidii Diibear 2.4.0 The Taidii Diibear Android application 2.4.0 and all its derivatives allow attackers to view private chat messages and media files via logcat because of excessive logging. | 5.5 |