Vulnerabilities > Cleartext Transmission of Sensitive Information
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-10-19 | CVE-2018-12674 | Cleartext Transmission of Sensitive Information vulnerability in Sv3C H.264 POE IP Camera Firmware V2.3.4.2103S50Ntdb20170508B/V2.3.4.2103S50Ntdb20170823B The SV3C HD Camera (L-SERIES V2.3.4.2103-S50-NTD-B20170508B and V2.3.4.2103-S50-NTD-B20170823B) stores the username and password within the cookies of a session. | 5.7 |
| 2018-10-09 | CVE-2018-18071 | Cleartext Transmission of Sensitive Information vulnerability in Mercedes-Benz Mercedes ME 2.11.0 An issue was discovered in the Daimler Mercedes-Benz Me app 2.11.0-846 for iOS. | 7.5 |
| 2018-10-08 | CVE-2018-5401 | Cleartext Transmission of Sensitive Information vulnerability in Auto-Maskin products The Auto-Maskin DCU 210E, RP-210E, and Marine Pro Observer Android App transmit sensitive or security-critical data in cleartext in a communication channel that can be sniffed by unauthorized actors. | 5.9 |
| 2018-10-02 | CVE-2018-15752 | Cleartext Transmission of Sensitive Information vulnerability in Mensamax 4.3 An issue was discovered in the MensaMax (aka com.breustedt.mensamax) application 4.3 for Android. | 8.1 |
| 2018-09-26 | CVE-2018-8842 | Cleartext Transmission of Sensitive Information vulnerability in Philips E-Alert Firmware 2.1/R2.1 Philips e-Alert Unit (non-medical device), Version R2.1 and prior. | 8.8 |
| 2018-09-24 | CVE-2018-13140 | Cleartext Transmission of Sensitive Information vulnerability in Druide Antidote 9 Druide Antidote through 9.5.1 on Windows and Linux allows remote code execution through the update mechanism by leveraging use of HTTP to download installation packages. | 8.1 |
| 2018-09-18 | CVE-2018-16225 | Cleartext Transmission of Sensitive Information vulnerability in multiple products The QBee MultiSensor Camera through 4.16.4 accepts unencrypted network traffic from clients (such as the QBee Cam application through 1.0.5 for Android and the Swisscom Home application up to 10.7.2 for Android), which results in an attacker being able to reuse cookies to bypass authentication and disable the camera. | 6.5 |
| 2018-09-04 | CVE-2018-14627 | Cleartext Transmission of Sensitive Information vulnerability in Redhat Wildfly The IIOP OpenJDK Subsystem in WildFly before version 14.0.0 does not honour configuration when SSL transport is required. | 5.9 |
| 2018-08-29 | CVE-2018-12710 | Cleartext Transmission of Sensitive Information vulnerability in Dlink Dir-601 Firmware 2.02Na An issue was discovered on D-Link DIR-601 2.02NA devices. | 8.0 |
| 2018-08-24 | CVE-2018-11749 | Cleartext Transmission of Sensitive Information vulnerability in Puppet Enterprise When users are configured to use startTLS with RBAC LDAP, at login time, the user's credentials are sent via plaintext to the LDAP server. | 9.8 |