Vulnerabilities > Cleartext Transmission of Sensitive Information
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-03-27 | CVE-2019-9860 | Cleartext Transmission of Sensitive Information vulnerability in Abus products Due to unencrypted signal communication and predictability of rolling codes, an attacker can "desynchronize" an ABUS Secvest wireless remote control (FUBE50014 or FUBE50015) relative to its controlled Secvest wireless alarm system FUAA50000 3.01.01, so that sent commands by the remote control are not accepted anymore. | 7.5 |
| 2019-03-26 | CVE-2019-6540 | Cleartext Transmission of Sensitive Information vulnerability in Medtronic products The Conexus telemetry protocol utilized within Medtronic MyCareLink Monitor versions 24950 and 24952, CareLink Monitor version 2490C, CareLink 2090 Programmer, Amplia CRT-D, Claria CRT-D, Compia CRT-D, Concerto CRT-D, Concerto II CRT-D, Consulta CRT-D, Evera ICD, Maximo II CRT-D and ICD, Mirro ICD, Nayamed ND ICD, Primo ICD, Protecta ICD and CRT-D, Secura ICD, Virtuoso ICD, Virtuoso II ICD, Visia AF ICD, and Viva CRT-D does not implement encryption. | 6.5 |
| 2019-03-05 | CVE-2019-4063 | Cleartext Transmission of Sensitive Information vulnerability in IBM Sterling B2B Integrator IBM Sterling B2B Integrator 5.2.0.1 through 6.0.0.0 Standard Edition could allow highly sensitive information to be transmitted in plain text. | 5.9 |
| 2019-02-15 | CVE-2019-8345 | Cleartext Transmission of Sensitive Information vulnerability in Estrongs ES File Explorer File Manager 4.1.9.7.4 The Help feature in the ES File Explorer File Manager application 4.1.9.7.4 for Android allows session hijacking by a Man-in-the-middle attacker on the local network because HTTPS is not used, and an attacker's web site is displayed in a WebView with no information about the URL. | 4.2 |
| 2019-02-09 | CVE-2019-7675 | Cleartext Transmission of Sensitive Information vulnerability in Mobotix S14 Firmware Mxv4.2.1.61 An issue was discovered on MOBOTIX S14 MX-V4.2.1.61 devices. | 7.5 |
| 2019-01-20 | CVE-2018-18908 | Cleartext Transmission of Sensitive Information vulnerability in SKY GO 1.0.191/1.0.231 The Sky Go Desktop application 1.0.19-1 through 1.0.23-1 for Windows performs several requests over cleartext HTTP. | 5.9 |
| 2019-01-07 | CVE-2019-5489 | Cleartext Transmission of Sensitive Information vulnerability in multiple products The mincore() implementation in mm/mincore.c in the Linux kernel through 4.19.13 allowed local attackers to observe page cache access patterns of other processes on the same system, potentially allowing sniffing of secret information. | 5.5 |
| 2018-12-06 | CVE-2018-1525 | Cleartext Transmission of Sensitive Information vulnerability in IBM I2 Enterprise Insight Analysis 2.1.7/2.1.8 IBM i2 Enterprise Insight Analysis 2.1.7 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. | 5.9 |
| 2018-11-27 | CVE-2018-7960 | Cleartext Transmission of Sensitive Information vulnerability in Huawei Espace 7950 Firmware V200R003C30 There is a SRTP icon display vulnerability in Huawei eSpace product. | 7.4 |
| 2018-11-08 | CVE-2018-19111 | Cleartext Transmission of Sensitive Information vulnerability in Google Cardboard 1.2/1.8 The Google Cardboard application 1.8 for Android and 1.2 for iOS sends potentially private cleartext information to the Unity 3D Stats web site, as demonstrated by device make, model, and OS. | 5.3 |