Vulnerabilities > Cleartext Transmission of Sensitive Information
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-10-02 | CVE-2018-15752 | Cleartext Transmission of Sensitive Information vulnerability in Mensamax 4.3 An issue was discovered in the MensaMax (aka com.breustedt.mensamax) application 4.3 for Android. | 8.1 |
| 2018-09-26 | CVE-2018-8842 | Cleartext Transmission of Sensitive Information vulnerability in Philips E-Alert Firmware 2.1/R2.1 Philips e-Alert Unit (non-medical device), Version R2.1 and prior. | 8.8 |
| 2018-09-24 | CVE-2018-13140 | Cleartext Transmission of Sensitive Information vulnerability in Druide Antidote 9 Druide Antidote through 9.5.1 on Windows and Linux allows remote code execution through the update mechanism by leveraging use of HTTP to download installation packages. | 8.1 |
| 2018-09-18 | CVE-2018-16225 | Cleartext Transmission of Sensitive Information vulnerability in multiple products The QBee MultiSensor Camera through 4.16.4 accepts unencrypted network traffic from clients (such as the QBee Cam application through 1.0.5 for Android and the Swisscom Home application up to 10.7.2 for Android), which results in an attacker being able to reuse cookies to bypass authentication and disable the camera. | 6.5 |
| 2018-09-04 | CVE-2018-14627 | Cleartext Transmission of Sensitive Information vulnerability in Redhat Wildfly The IIOP OpenJDK Subsystem in WildFly before version 14.0.0 does not honour configuration when SSL transport is required. | 5.9 |
| 2018-08-29 | CVE-2018-12710 | Cleartext Transmission of Sensitive Information vulnerability in Dlink Dir-601 Firmware 2.02Na An issue was discovered on D-Link DIR-601 2.02NA devices. | 8.0 |
| 2018-08-24 | CVE-2018-11749 | Cleartext Transmission of Sensitive Information vulnerability in Puppet Enterprise When users are configured to use startTLS with RBAC LDAP, at login time, the user's credentials are sent via plaintext to the LDAP server. | 9.8 |
| 2018-08-13 | CVE-2018-10634 | Cleartext Transmission of Sensitive Information vulnerability in Medtronic products Medtronic MMT 508 MiniMed insulin pump, 522 / MMT - 722 Paradigm REAL-TIME, 523 / MMT - 723 Paradigm Revel, 523K / MMT - 723K Paradigm Revel, and 551 / MMT - 751 MiniMed 530G communications between the pump and wireless accessories are transmitted in cleartext. | 5.3 |
| 2018-07-31 | CVE-2018-11338 | Cleartext Transmission of Sensitive Information vulnerability in Intuit Lacerte Intuit Lacerte 2017 for Windows in a client/server environment transfers the entire customer list in cleartext over SMB, which allows attackers to (1) obtain sensitive information by sniffing the network or (2) conduct man-in-the-middle (MITM) attacks via unspecified vectors. | 7.5 |
| 2018-07-24 | CVE-2018-8855 | Cleartext Transmission of Sensitive Information vulnerability in Echelon products Echelon SmartServer 1 all versions, SmartServer 2 all versions prior to release 4.11.007, i.LON 100 all versions, and i.LON 600 all versions. | 9.8 |