Vulnerabilities > Cleartext Transmission of Sensitive Information
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-07-10 | CVE-2017-5652 | Cleartext Transmission of Sensitive Information vulnerability in Apache Impala 2.7.0/2.8.0 During a routine security analysis, it was found that one of the ports in Apache Impala (incubating) 2.7.0 to 2.8.0 sent data in plaintext even when the cluster was configured to use TLS. | 7.5 |
| 2017-05-26 | CVE-2017-9035 | Cleartext Transmission of Sensitive Information vulnerability in Trendmicro Serverprotect 3.0 Trend Micro ServerProtect for Linux 3.0 before CP 1531 allows attackers to eavesdrop and tamper with updates by leveraging unencrypted communications with update servers. | 7.4 |
| 2017-05-11 | CVE-2017-8851 | Cleartext Transmission of Sensitive Information vulnerability in Oneplus Oxygenos An issue was discovered on OnePlus One and X devices. | 5.9 |
| 2017-05-11 | CVE-2017-8850 | Cleartext Transmission of Sensitive Information vulnerability in Oneplus Oxygenos An issue was discovered on OnePlus One, X, 2, 3, and 3T devices. | 5.9 |
| 2017-04-24 | CVE-2017-3305 | Cleartext Transmission of Sensitive Information vulnerability in multiple products Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: C API). | 5.3 |
| 2017-04-02 | CVE-2017-2412 | Cleartext Transmission of Sensitive Information vulnerability in Apple Iphone OS An issue was discovered in certain Apple products. | 5.9 |
| 2017-03-17 | CVE-2017-3815 | Cleartext Transmission of Sensitive Information vulnerability in Cisco Telepresence Server Software 4.2(4.17)/4.2(4.18)/4.2(4.19) An API Privilege vulnerability in Cisco TelePresence Server Software could allow an unauthenticated, remote attacker to emulate Cisco TelePresence Server endpoints. | 5.3 |
| 2017-03-17 | CVE-2017-6370 | Cleartext Transmission of Sensitive Information vulnerability in Typo3 7.6.15 TYPO3 7.6.15 sends an http request to an index.php?loginProvider URI in cases with an https Referer, which allows remote attackers to obtain sensitive cleartext information by sniffing the network and reading the userident and username fields. | 5.3 |
| 2017-03-09 | CVE-2017-6432 | Cleartext Transmission of Sensitive Information vulnerability in Dahuasecurity NVR Firmware 3.210.0001.10 An issue was discovered on Dahua DHI-HCVR7216A-S3 3.210.0001.10 build 2016-06-06 devices. | 8.1 |
| 2017-03-02 | CVE-2017-6410 | Cleartext Transmission of Sensitive Information vulnerability in KDE Kdelibs kpac/script.cpp in KDE kio before 5.32 and kdelibs before 4.14.30 calls the PAC FindProxyForURL function with a full https URL (potentially including Basic Authentication credentials, a query string, or PATH_INFO), which allows remote attackers to obtain sensitive information via a crafted PAC file. | 5.5 |