Vulnerabilities > Cleartext Transmission of Sensitive Information

DATE CVE VULNERABILITY TITLE RISK
2019-07-03 CVE-2019-6640 Cleartext Transmission of Sensitive Information vulnerability in F5 products
On BIG-IP 14.1.0-14.1.0.5, 14.0.0-14.0.0.4, 13.0.0-13.1.1.4, 12.1.0-12.1.4, 11.6.1-11.6.3.4, and 11.5.1-11.5.8, SNMP exposes sensitive configuration objects over insecure transmission channels.
network
low complexity
f5 CWE-319
5.3
2019-07-03 CVE-2018-11422 Cleartext Transmission of Sensitive Information vulnerability in Moxa products
Moxa OnCell G3100-HSPA Series version 1.6 Build 17100315 and prior use a proprietary configuration protocol that does not provide confidentiality, integrity, and authenticity security controls.
network
low complexity
moxa CWE-319
critical
9.8
2019-07-03 CVE-2018-11421 Cleartext Transmission of Sensitive Information vulnerability in Moxa products
Moxa OnCell G3100-HSPA Series version 1.6 Build 17100315 and prior use a proprietary monitoring protocol that does not provide confidentiality, integrity, and authenticity security controls.
network
low complexity
moxa CWE-319
critical
9.8
2019-07-03 CVE-2019-3619 Cleartext Transmission of Sensitive Information vulnerability in Mcafee Epolicy Orchestrator 5.10.0/5.9.0/5.9.1
Information Disclosure vulnerability in the Agent Handler in McAfee ePolicy Orchestrator (ePO) 5.9.x and 5.10.0 prior to 5.10.0 update 4 allows remote unauthenticated attacker to view sensitive information in plain text via sniffing the traffic between the Agent Handler and the SQL server.
network
low complexity
mcafee CWE-319
4.9
2019-07-01 CVE-2019-12781 Cleartext Transmission of Sensitive Information vulnerability in multiple products
An issue was discovered in Django 1.11 before 1.11.22, 2.1 before 2.1.10, and 2.2 before 2.2.3.
network
low complexity
djangoproject canonical debian CWE-319
5.3
2019-06-25 CVE-2019-4382 Cleartext Transmission of Sensitive Information vulnerability in IBM API Connect
IBM API Connect 5.0.0.0 through 5.0.8.6 could allow an unauthorized user to obtain sensitive information about the system users using specially crafted HTTP requests.
network
low complexity
ibm CWE-319
5.3
2019-06-13 CVE-2019-12813 Cleartext Transmission of Sensitive Information vulnerability in Crossmatch Digital Persona U.Are.U 4500 Firmware 24
An issue was discovered in Digital Persona U.are.U 4500 Fingerprint Reader v24.
network
high complexity
crossmatch CWE-319
5.9
2019-06-07 CVE-2019-12506 Cleartext Transmission of Sensitive Information vulnerability in Logitech R700 Laser Presentation Remote Firmware Wd802Xm/Wd904Xm
Due to unencrypted and unauthenticated data communication, the wireless presenter Logitech R700 Laser Presentation Remote R-R0010 is prone to keystroke injection attacks.
low complexity
logitech CWE-319
8.8
2019-06-07 CVE-2019-12505 Cleartext Transmission of Sensitive Information vulnerability in Inateck Wp1001 Firmware 1.3C
Due to unencrypted and unauthenticated data communication, the wireless presenter Inateck WP1001 v1.3C is prone to keystroke injection attacks.
low complexity
inateck CWE-319
8.8
2019-06-07 CVE-2019-12504 Cleartext Transmission of Sensitive Information vulnerability in Inateck Wp2002 Firmware
Due to unencrypted and unauthenticated data communication, the wireless presenter Inateck WP2002 is prone to keystroke injection attacks.
low complexity
inateck CWE-319
8.8