Vulnerabilities > Cleartext Transmission of Sensitive Information
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-09-27 | CVE-2019-11739 | Cleartext Transmission of Sensitive Information vulnerability in Mozilla Thunderbird Encrypted S/MIME parts in a crafted multipart/alternative message can leak plaintext when included in a a HTML reply/forward. | 6.5 |
| 2019-09-25 | CVE-2019-6652 | Cleartext Transmission of Sensitive Information vulnerability in F5 Big-Iq Centralized Management 6.0.0/6.0.1/6.1.0 In BIG-IQ 6.0.0-6.1.0, services for stats do not require authentication nor do they implement any form of Transport Layer Security (TLS). | 6.5 |
| 2019-09-25 | CVE-2019-10428 | Cleartext Transmission of Sensitive Information vulnerability in Jenkins Aqua Security Scanner Jenkins Aqua Security Scanner Plugin 3.0.17 and earlier transmitted configured credentials in plain text as part of the global Jenkins configuration form, potentially resulting in their exposure. | 7.5 |
| 2019-09-25 | CVE-2019-10427 | Cleartext Transmission of Sensitive Information vulnerability in Jenkins Aqua Microscanner Jenkins Aqua MicroScanner Plugin 1.0.7 and earlier transmitted configured credentials in plain text as part of the global Jenkins configuration form, potentially resulting in their exposure. | 5.3 |
| 2019-09-25 | CVE-2019-10412 | Cleartext Transmission of Sensitive Information vulnerability in Jenkins Inedo Proget Jenkins Inedo ProGet Plugin 1.2 and earlier transmitted configured credentials in plain text as part of the global Jenkins configuration form, potentially resulting in their exposure. | 7.5 |
| 2019-09-25 | CVE-2019-10411 | Cleartext Transmission of Sensitive Information vulnerability in Jenkins Inedo Buildmaster Jenkins Inedo BuildMaster Plugin 2.4.0 and earlier transmitted configured credentials in plain text as part of the global Jenkins configuration form, potentially resulting in their exposure. | 7.5 |
| 2019-09-12 | CVE-2019-10397 | Cleartext Transmission of Sensitive Information vulnerability in Jenkins Aqua Security Severless Scanner Jenkins Aqua Security Serverless Scanner Plugin 1.0.4 and earlier transmitted configured passwords in plain text as part of job configuration forms, potentially resulting in their exposure. | 3.1 |
| 2019-09-10 | CVE-2019-5503 | Cleartext Transmission of Sensitive Information vulnerability in Netapp Oncommand Workflow Automation 5.0 OnCommand Workflow Automation versions prior to 5.0 shipped without certain HTTP Security headers configured which could allow an attacker to obtain sensitive information via unspecified vectors. | 5.3 |
| 2019-09-04 | CVE-2019-14319 | Cleartext Transmission of Sensitive Information vulnerability in Tiktok The TikTok (formerly Musical.ly) application 12.2.0 for Android and iOS performs unencrypted transmission of images, videos, and likes. | 6.5 |
| 2019-08-28 | CVE-2019-10391 | Cleartext Transmission of Sensitive Information vulnerability in Jenkins IBM Application Security on Cloud Jenkins IBM Application Security on Cloud Plugin 1.2.4 and earlier transmitted configured passwords in plain text as part of job configuration forms, potentially resulting in their exposure. | 6.5 |