Vulnerabilities > Cleartext Transmission of Sensitive Information

DATE CVE VULNERABILITY TITLE RISK
2023-10-22 CVE-2023-38276 Cleartext Transmission of Sensitive Information vulnerability in IBM Cognos Dashboards on Cloud PAK for Data 4.7.0
IBM Cognos Dashboards on Cloud Pak for Data 4.7.0 exposes sensitive information in environment variables which could aid in further attacks against the system.
network
low complexity
ibm CWE-319
7.5
2023-10-22 CVE-2023-38275 Cleartext Transmission of Sensitive Information vulnerability in IBM Cognos Dashboards on Cloud PAK for Data 4.7.0
IBM Cognos Dashboards on Cloud Pak for Data 4.7.0 exposes sensitive information in container images which could lead to further attacks against the system.
network
low complexity
ibm CWE-319
7.5
2023-10-19 CVE-2023-41088 Cleartext Transmission of Sensitive Information vulnerability in Dexma Dexgate 20130114
The affected product is vulnerable to a cleartext transmission of sensitive information vulnerability, which may allow an attacker with access to the network, where clients have access to the DexGate server, could capture traffic.
network
low complexity
dexma CWE-319
6.5
2023-10-19 CVE-2023-34441 Cleartext Transmission of Sensitive Information vulnerability in Bakerhughes Bentley Nevada 3500 System Firmware 5.0.5
Baker Hughes – Bently Nevada 3500 System TDI Firmware version 5.05 contains a cleartext transmission vulnerability which could allow an attacker to steal the authentication secret from communication traffic to the device and reuse it for arbitrary requests.
network
low complexity
bakerhughes CWE-319
8.2
2023-10-17 CVE-2022-22385 Cleartext Transmission of Sensitive Information vulnerability in IBM Security Verify Privilege On-Premises
IBM Security Verify Privilege On-Premises 11.5 could disclose sensitive information to an attacked due to the transmission of data in clear text.
network
low complexity
ibm CWE-319
7.5
2023-10-09 CVE-2023-5100 Cleartext Transmission of Sensitive Information vulnerability in Sick Apu0200 Firmware
Cleartext Transmission of Sensitive Information in RDT400 in SICK APU allows an unprivileged remote attacker to retrieve potentially sensitive information via intercepting network traffic that is not encrypted.
network
low complexity
sick CWE-319
6.5
2023-10-06 CVE-2023-23371 Cleartext Transmission of Sensitive Information vulnerability in Qnap Qvpn 2.2.0
A cleartext transmission of sensitive information vulnerability has been reported to affect QVPN Device Client.
local
low complexity
qnap CWE-319
4.4
2023-10-04 CVE-2023-3361 Cleartext Transmission of Sensitive Information vulnerability in multiple products
A flaw was found in Red Hat OpenShift Data Science.
network
low complexity
opendatahub redhat CWE-319
7.5
2023-10-03 CVE-2022-47892 Cleartext Transmission of Sensitive Information vulnerability in Riello-Ups Netman 204 Firmware
All versions of NetMan 204 could allow an unauthenticated remote attacker to read a file (config.cgi) containing sensitive information, like credentials.
network
low complexity
riello-ups CWE-319
7.5
2023-09-20 CVE-2023-42147 Cleartext Transmission of Sensitive Information vulnerability in Fit2Cloud Cloudexplorer Lite 1.3.1
An issue in CloudExplorer Lite 1.3.1 allows an attacker to obtain sensitive information via the login key component.
network
low complexity
fit2cloud CWE-319
7.5