Vulnerabilities > Cleartext Transmission of Sensitive Information
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-04-24 | CVE-2019-3793 | Cleartext Transmission of Sensitive Information vulnerability in Pivotal Software Application Service Pivotal Apps Manager Release, versions 665.0.x prior to 665.0.28, versions 666.0.x prior to 666.0.21, versions 667.0.x prior to 667.0.7, contain an invitation service that accepts HTTP. | 9.8 |
| 2019-04-15 | CVE-2019-6526 | Cleartext Transmission of Sensitive Information vulnerability in Moxa products Moxa IKS-G6824A series Versions 4.5 and prior, EDS-405A series Version 3.8 and prior, EDS-408A series Version 3.8 and prior, and EDS-510A series Version 3.8 and prior use plaintext transmission of sensitive data, which may allow an attacker to capture sensitive data such as an administrative password. | 9.8 |
| 2019-04-07 | CVE-2019-10740 | Cleartext Transmission of Sensitive Information vulnerability in multiple products In Roundcube Webmail before 1.3.10, an attacker in possession of S/MIME or PGP encrypted emails can wrap them as sub-parts within a crafted multipart email. | 4.3 |
| 2019-04-07 | CVE-2019-10735 | Cleartext Transmission of Sensitive Information vulnerability in Claws-Mail Mail 3.14.1 In Claws Mail 3.14.1, an attacker in possession of S/MIME or PGP encrypted emails can wrap them as sub-parts within a crafted multipart email. | 4.3 |
| 2019-04-07 | CVE-2019-10734 | Cleartext Transmission of Sensitive Information vulnerability in Trojita Project Trojita 0.7 In KDE Trojita 0.7, an attacker in possession of S/MIME or PGP encrypted emails can wrap them as sub-parts within a crafted multipart email. | 4.3 |
| 2019-04-07 | CVE-2019-10732 | Cleartext Transmission of Sensitive Information vulnerability in multiple products In KDE KMail 5.2.3, an attacker in possession of S/MIME or PGP encrypted emails can wrap them as sub-parts within a crafted multipart email. | 4.3 |
| 2019-04-03 | CVE-2019-10240 | Cleartext Transmission of Sensitive Information vulnerability in Eclipse Hawkbit Eclipse hawkBit versions prior to 0.3.0M2 resolved Maven build artifacts for the Vaadin based UI over HTTP instead of HTTPS. | 8.1 |
| 2019-04-02 | CVE-2019-1010260 | Cleartext Transmission of Sensitive Information vulnerability in Ktlint Project Ktlint Using ktlint to download and execute custom rulesets can result in arbitrary code execution as the served jars can be compromised by a MITM. | 8.1 |
| 2019-03-28 | CVE-2019-10251 | Cleartext Transmission of Sensitive Information vulnerability in Ucweb UC Browser 11.2.5.932/13.0.8/20190326 The UCWeb UC Browser application through 2019-03-26 for Android uses HTTP to download certain modules associated with PDF and Microsoft Office files (related to libpicsel), which allows MITM attacks. | 5.9 |
| 2019-03-28 | CVE-2019-10250 | Cleartext Transmission of Sensitive Information vulnerability in Ucweb UC Browser 7.0.185.1002 UCWeb UC Browser 7.0.185.1002 on Windows uses HTTP for downloading certain PDF modules, which allows MITM attacks. | 5.9 |