Vulnerabilities > Cleartext Transmission of Sensitive Information
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-01-14 | CVE-2019-12399 | Cleartext Transmission of Sensitive Information vulnerability in multiple products When Connect workers in Apache Kafka 2.0.0, 2.0.1, 2.1.0, 2.1.1, 2.2.0, 2.2.1, or 2.3.0 are configured with one or more config providers, and a connector is created/updated on that Connect cluster to use an externalized secret variable in a substring of a connector configuration property value, then any client can issue a request to the same Connect cluster to obtain the connector's task configuration and the response will contain the plaintext secret rather than the externalized secrets variables. | 7.5 |
| 2020-01-13 | CVE-2014-5380 | Cleartext Transmission of Sensitive Information vulnerability in Granding Grand Ma300 Firmware 6.60 Grand MA 300 allows retrieval of the access PIN from sniffed data. | 7.5 |
| 2020-01-06 | CVE-2019-16274 | Cleartext Transmission of Sensitive Information vulnerability in Dten D5 Firmware and D7 Firmware DTEN D5 before 1.3 and D7 before 1.3 devices transfer customer data files via unencrypted HTTP. | 7.5 |
| 2019-12-25 | CVE-2019-19967 | Cleartext Transmission of Sensitive Information vulnerability in UPC Connect BOX Eurodocsis Firmware Ch7465Lgncip6.12.18.252P6Nosh The Administration page on Connect Box EuroDOCSIS 3.0 Voice Gateway CH7465LG-NCIP-6.12.18.25-2p6-NOSH devices accepts a cleartext password in a POST request on port 80, as demonstrated by the Password field to the xml/setter.xml URI. | 7.5 |
| 2019-12-20 | CVE-2019-4743 | Cleartext Transmission of Sensitive Information vulnerability in IBM Financial Transaction Manager for Multiplatform 3.0.0.0 IBM Financial Transaction Manager 3.0 does not set the secure attribute on authorization tokens or session cookies. | 4.3 |
| 2019-12-20 | CVE-2019-15911 | Cleartext Transmission of Sensitive Information vulnerability in Asus products An issue was discovered on ASUS HG100, MW100, WS-101, TS-101, AS-101, MS-101, DL-101 devices using ZigBee PRO. | 9.8 |
| 2019-12-18 | CVE-2019-19889 | Cleartext Transmission of Sensitive Information vulnerability in Humaxdigital Hgb10R-02 Firmware 201608171855 An issue was discovered on Humax Wireless Voice Gateway HGB10R-2 20160817_1855 devices. | 7.5 |
| 2019-12-18 | CVE-2019-8632 | Cleartext Transmission of Sensitive Information vulnerability in Apple Texture Some analytics data was sent using HTTP rather than HTTPS. | 6.5 |
| 2019-12-17 | CVE-2019-3993 | Cleartext Transmission of Sensitive Information vulnerability in multiple products ELOG 3.1.4-57bea22 and below is affected by an information disclosure vulnerability. | 7.5 |
| 2019-12-17 | CVE-2019-3992 | Cleartext Transmission of Sensitive Information vulnerability in multiple products ELOG 3.1.4-57bea22 and below is affected by an information disclosure vulnerability. | 7.5 |