Vulnerabilities > Cleartext Transmission of Sensitive Information

DATE CVE VULNERABILITY TITLE RISK
2018-06-08 CVE-2018-4227 Cleartext Transmission of Sensitive Information vulnerability in Apple mac OS X
An issue was discovered in certain Apple products.
network
low complexity
apple CWE-319
7.5
2018-06-05 CVE-2018-1454 Cleartext Transmission of Sensitive Information vulnerability in IBM Infosphere Information Server 11.3/11.5/11.7
IBM InfoSphere Information Server 11.3, 11.5, and 11.7 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security.
network
high complexity
ibm CWE-319
5.9
2018-06-04 CVE-2017-16041 Cleartext Transmission of Sensitive Information vulnerability in Ikst Project Ikst
ikst versions before 1.1.2 download resources over HTTP, which leaves it vulnerable to MITM attacks.
network
high complexity
ikst-project CWE-319
5.9
2018-06-04 CVE-2017-16040 Cleartext Transmission of Sensitive Information vulnerability in Gfe-Sass Project Gfe-Sass
gfe-sass is a library for promises (CommonJS/Promises/A,B,D) gfe-sass downloads resources over HTTP, which leaves it vulnerable to MITM attacks.
network
high complexity
gfe-sass-project CWE-319
8.1
2018-06-04 CVE-2017-16035 Cleartext Transmission of Sensitive Information vulnerability in Hubspot Hubl-Server
The hubl-server module is a wrapper for the HubL Development Server.
network
high complexity
hubspot CWE-319
8.1
2018-06-04 CVE-2018-1600 Cleartext Transmission of Sensitive Information vulnerability in IBM Bigfix Platform
IBM BigFix Platform 9.2 and 9.5 transmits sensitive or security-critical data in clear text in a communication channel that can be sniffed by unauthorized actors.
network
low complexity
ibm CWE-319
7.5
2018-05-30 CVE-2018-11477 Cleartext Transmission of Sensitive Information vulnerability in Vgate Icar 2 Wi-Fi Obd2 Firmware
An issue was discovered on Vgate iCar 2 Wi-Fi OBD2 Dongle devices.
low complexity
vgate CWE-319
6.5
2018-05-24 CVE-2018-11402 Cleartext Transmission of Sensitive Information vulnerability in Simplisafe U9K-Kp1000 Firmware
SimpliSafe Original has Unencrypted Keypad Transmissions, which allows physically proximate attackers to discover the PIN.
low complexity
simplisafe CWE-319
6.6
2018-05-24 CVE-2018-11399 Cleartext Transmission of Sensitive Information vulnerability in Simplisafe products
SimpliSafe Original has Unencrypted Sensor Transmissions, which allows physically proximate attackers to obtain potentially sensitive information about the specific times when alarm-system events occur.
low complexity
simplisafe CWE-319
4.3
2018-05-02 CVE-2018-0283 Cleartext Transmission of Sensitive Information vulnerability in Cisco Secure Firewall Management Center
A vulnerability in the detection engine of Cisco Firepower System Software could allow an unauthenticated, remote attacker to restart an instance of the Snort detection engine on an affected device, resulting in a brief denial of service (DoS) condition.
network
low complexity
cisco CWE-319
5.8