Vulnerabilities > Cleartext Transmission of Sensitive Information
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-03-26 | CVE-2019-6540 | Cleartext Transmission of Sensitive Information vulnerability in Medtronic products The Conexus telemetry protocol utilized within Medtronic MyCareLink Monitor versions 24950 and 24952, CareLink Monitor version 2490C, CareLink 2090 Programmer, Amplia CRT-D, Claria CRT-D, Compia CRT-D, Concerto CRT-D, Concerto II CRT-D, Consulta CRT-D, Evera ICD, Maximo II CRT-D and ICD, Mirro ICD, Nayamed ND ICD, Primo ICD, Protecta ICD and CRT-D, Secura ICD, Virtuoso ICD, Virtuoso II ICD, Visia AF ICD, and Viva CRT-D does not implement encryption. | 6.5 |
| 2019-03-05 | CVE-2019-4063 | Cleartext Transmission of Sensitive Information vulnerability in IBM Sterling B2B Integrator IBM Sterling B2B Integrator 5.2.0.1 through 6.0.0.0 Standard Edition could allow highly sensitive information to be transmitted in plain text. | 5.9 |
| 2019-02-15 | CVE-2019-8345 | Cleartext Transmission of Sensitive Information vulnerability in Estrongs ES File Explorer File Manager 4.1.9.7.4 The Help feature in the ES File Explorer File Manager application 4.1.9.7.4 for Android allows session hijacking by a Man-in-the-middle attacker on the local network because HTTPS is not used, and an attacker's web site is displayed in a WebView with no information about the URL. | 4.2 |
| 2019-02-09 | CVE-2019-7675 | Cleartext Transmission of Sensitive Information vulnerability in Mobotix S14 Firmware Mxv4.2.1.61 An issue was discovered on MOBOTIX S14 MX-V4.2.1.61 devices. | 7.5 |
| 2019-01-20 | CVE-2018-18908 | Cleartext Transmission of Sensitive Information vulnerability in SKY GO 1.0.191/1.0.231 The Sky Go Desktop application 1.0.19-1 through 1.0.23-1 for Windows performs several requests over cleartext HTTP. | 5.9 |
| 2019-01-07 | CVE-2019-5489 | Cleartext Transmission of Sensitive Information vulnerability in multiple products The mincore() implementation in mm/mincore.c in the Linux kernel through 4.19.13 allowed local attackers to observe page cache access patterns of other processes on the same system, potentially allowing sniffing of secret information. | 5.5 |
| 2018-12-06 | CVE-2018-1525 | Cleartext Transmission of Sensitive Information vulnerability in IBM I2 Enterprise Insight Analysis 2.1.7/2.1.8 IBM i2 Enterprise Insight Analysis 2.1.7 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. | 5.9 |
| 2018-11-27 | CVE-2018-7960 | Cleartext Transmission of Sensitive Information vulnerability in Huawei Espace 7950 Firmware V200R003C30 There is a SRTP icon display vulnerability in Huawei eSpace product. | 7.4 |
| 2018-11-08 | CVE-2018-19111 | Cleartext Transmission of Sensitive Information vulnerability in Google Cardboard 1.2/1.8 The Google Cardboard application 1.8 for Android and 1.2 for iOS sends potentially private cleartext information to the Unity 3D Stats web site, as demonstrated by device make, model, and OS. | 5.3 |
| 2018-10-19 | CVE-2018-12674 | Cleartext Transmission of Sensitive Information vulnerability in Sv3C H.264 POE IP Camera Firmware V2.3.4.2103S50Ntdb20170508B/V2.3.4.2103S50Ntdb20170823B The SV3C HD Camera (L-SERIES V2.3.4.2103-S50-NTD-B20170508B and V2.3.4.2103-S50-NTD-B20170823B) stores the username and password within the cookies of a session. | 5.7 |