Vulnerabilities > Cleartext Transmission of Sensitive Information
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-10-06 | CVE-2020-1902 | Cleartext Transmission of Sensitive Information vulnerability in Whatsapp and Whatsapp Business A user running a quick search on a highly forwarded message on WhatsApp for Android from v2.20.108 to v2.20.140 or WhatsApp Business for Android from v2.20.35 to v2.20.49 could have been sent to the Google service over plain HTTP. | 7.5 |
| 2020-09-25 | CVE-2020-25748 | Cleartext Transmission of Sensitive Information vulnerability in Rubetek products A Cleartext Transmission issue was discovered on Rubetek RV-3406, RV-3409, and RV-3411 cameras (firmware versions v342, v339). | 8.1 |
| 2020-09-08 | CVE-2020-3702 | Cleartext Transmission of Sensitive Information vulnerability in multiple products u'Specifically timed and handcrafted traffic can cause internal errors in a WLAN device that lead to improper layer 2 Wi-Fi encryption with a consequent possibility of information disclosure over the air for a discrete set of traffic' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8053, IPQ4019, IPQ8064, MSM8909W, MSM8996AU, QCA9531, QCN5502, QCS405, SDX20, SM6150, SM7150 | 6.5 |
| 2020-09-01 | CVE-2020-2251 | Cleartext Transmission of Sensitive Information vulnerability in Jenkins and Soapui PRO Functional Testing Jenkins SoapUI Pro Functional Testing Plugin 1.5 and earlier transmits project passwords in its configuration in plain text as part of job configuration forms, potentially resulting in their exposure. | 4.3 |
| 2020-08-26 | CVE-2019-4689 | Cleartext Transmission of Sensitive Information vulnerability in IBM products IBM Security Guardium Data Encryption (GDE) 3.0.0.2 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. | 7.5 |
| 2020-08-26 | CVE-2020-15482 | Cleartext Transmission of Sensitive Information vulnerability in Niscomed M1000 Multipara Patient Monitor Firmware An issue was discovered on Nescomed Multipara Monitor M1000 devices. | 7.8 |
| 2020-08-21 | CVE-2020-10124 | Cleartext Transmission of Sensitive Information vulnerability in NCR Aptra XFS 05.01.00 NCR SelfServ ATMs running APTRA XFS 05.01.00 do not encrypt, authenticate, or verify the integrity of messages between the BNA and the host computer, which could allow an attacker with physical access to the internal components of the ATM to execute arbitrary code, including code that enables the attacker to commit deposit forgery. | 7.1 |
| 2020-08-12 | CVE-2020-2232 | Cleartext Transmission of Sensitive Information vulnerability in Jenkins Email Extension 2.72/2.73 Jenkins Email Extension Plugin 2.72 and 2.73 transmits and displays the SMTP password in plain text as part of the global Jenkins configuration form, potentially resulting in its exposure. | 7.5 |
| 2020-08-10 | CVE-2020-9526 | Cleartext Transmission of Sensitive Information vulnerability in Cs2-Network P2P CS2 Network P2P through 3.x, as used in millions of Internet of Things devices, suffers from an information exposure flaw that exposes user session data to supernodes in the network, as demonstrated by passively eavesdropping on user video/audio streams, capturing credentials, and compromising devices. | 5.9 |
| 2020-07-27 | CVE-2020-15954 | Cleartext Transmission of Sensitive Information vulnerability in multiple products KDE KMail 19.12.3 (aka 5.13.3) engages in unencrypted POP3 communication during times when the UI indicates that encryption is in use. | 6.5 |