Vulnerabilities > Cleartext Transmission of Sensitive Information

DATE CVE VULNERABILITY TITLE RISK
2024-01-18 CVE-2023-50614 Cleartext Transmission of Sensitive Information vulnerability in Cdebyte E880-Ir01 Firmware 1.1
An issue discovereed in EBYTE E880-IR01-V1.1 allows an attacker to obtain sensitive information via crafted POST request to /cgi-bin/luci.
network
low complexity
cdebyte CWE-319
7.5
2024-01-17 CVE-2023-51740 Cleartext Transmission of Sensitive Information vulnerability in Skyworthdigital Cm5100 Firmware 4.1.1.24
This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, due to transmission of authentication credentials in plaintext over the network.
network
low complexity
skyworthdigital CWE-319
7.5
2024-01-17 CVE-2023-51741 Cleartext Transmission of Sensitive Information vulnerability in Skyworthdigital Cm5100 Firmware 4.1.1.24
This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, due to transmission of authentication credentials in plaintext over the network.
network
low complexity
skyworthdigital CWE-319
7.5
2023-12-31 CVE-2023-6094 Cleartext Transmission of Sensitive Information vulnerability in Moxa Oncell G3150A-Lte Firmware 1.3
A vulnerability has been identified in OnCell G3150A-LTE Series firmware versions v1.3 and prior.
network
low complexity
moxa CWE-319
5.3
2023-12-29 CVE-2023-31300 Cleartext Transmission of Sensitive Information vulnerability in Sesami Cash Point & Transport Optimizer 6.3.8.6.718
An issue was discovered in Sesami Cash Point & Transport Optimizer (CPTO) version 6.3.8.6 (#718), allows remote attackers to obtain sensitive information via transmission of unencrypted, cleartext credentials during Password Reset feature.
network
low complexity
sesami CWE-319
7.5
2023-12-28 CVE-2023-34829 Cleartext Transmission of Sensitive Information vulnerability in Tp-Link Tapo 2.11.44/2.8.14
Incorrect access control in TP-Link Tapo before v3.1.315 allows attackers to access user credentials in plaintext.
low complexity
tp-link CWE-319
6.5
2023-12-26 CVE-2023-28616 Cleartext Transmission of Sensitive Information vulnerability in Stormshield Network Security
An issue was discovered in Stormshield Network Security (SNS) before 4.3.17, 4.4.x through 4.6.x before 4.6.4, and 4.7.x before 4.7.1.
network
low complexity
stormshield CWE-319
7.5
2023-12-21 CVE-2023-51390 Cleartext Transmission of Sensitive Information vulnerability in Aiven Journalpump
journalpump is a daemon that takes log messages from journald and pumps them to a given output.
network
low complexity
aiven CWE-319
7.5
2023-12-20 CVE-2023-50703 Cleartext Transmission of Sensitive Information vulnerability in Efacec UC 500E Firmware 10.1.0
An attacker with network access could perform a man-in-the-middle (MitM) attack and capture sensitive information to gain unauthorized access to the application.
network
high complexity
efacec CWE-319
5.9
2023-12-07 CVE-2023-39172 Cleartext Transmission of Sensitive Information vulnerability in Enbw Senec Storage BOX Firmware
The affected devices transmit sensitive information unencrypted allowing a remote unauthenticated attacker to capture and modify network traffic.
network
low complexity
enbw CWE-319
critical
9.1