Vulnerabilities > Cleartext Transmission of Sensitive Information

DATE CVE VULNERABILITY TITLE RISK
2023-09-20 CVE-2022-47560 Cleartext Transmission of Sensitive Information vulnerability in Ormazabal Ekorccp Firmware and Ekorrci Firmware
The lack of web request control on ekorCCP and ekorRCI devices allows a potential attacker to create custom requests to execute malicious actions when a user is logged in.
network
low complexity
ormazabal CWE-319
6.5
2023-09-15 CVE-2022-3261 Cleartext Transmission of Sensitive Information vulnerability in Redhat Openstack Platform 16.2
A flaw was found in OpenStack.
network
low complexity
redhat CWE-319
7.5
2023-09-12 CVE-2023-4918 Cleartext Transmission of Sensitive Information vulnerability in Redhat Keycloak 22.0.2
A flaw was found in the Keycloak package, more specifically org.keycloak.userprofile.
network
low complexity
redhat CWE-319
8.8
2023-09-05 CVE-2023-22870 Cleartext Transmission of Sensitive Information vulnerability in IBM Aspera Faspex
IBM Aspera Faspex 5.0.5 transmits sensitive information in cleartext which could be obtained by an attacker using man in the middle techniques.
network
high complexity
ibm CWE-319
5.9
2023-08-24 CVE-2023-34972 Cleartext Transmission of Sensitive Information vulnerability in Qnap QTS and Quts Hero
A cleartext transmission of sensitive information vulnerability has been reported to affect QNAP operating systems.
low complexity
qnap CWE-319
6.5
2023-08-09 CVE-2023-36671 Cleartext Transmission of Sensitive Information vulnerability in Clario VPN 5.9.1.1662
An issue was discovered in the Clario VPN client through 5.9.1.1662 for macOS.
local
high complexity
clario CWE-319
6.3
2023-08-09 CVE-2023-36672 Cleartext Transmission of Sensitive Information vulnerability in Clario VPN 5.9.1.1662
An issue was discovered in the Clario VPN client through 5.9.1.1662 for macOS.
low complexity
clario CWE-319
5.7
2023-08-09 CVE-2023-36673 Cleartext Transmission of Sensitive Information vulnerability in Avira Phantom VPN 2.23.1
An issue was discovered in Avira Phantom VPN through 2.23.1 for macOS.
low complexity
avira CWE-319
7.3
2023-08-08 CVE-2023-39086 Cleartext Transmission of Sensitive Information vulnerability in Asus Rt-Ac66U B1 Firmware 3.0.0.4.28651665
ASUS RT-AC66U B1 3.0.0.4.286_51665 was discovered to transmit sensitive information in cleartext.
network
low complexity
asus CWE-319
7.5
2023-08-03 CVE-2023-2754 Cleartext Transmission of Sensitive Information vulnerability in Cloudflare Warp
The Cloudflare WARP client for Windows assigns loopback IPv4 addresses for the DNS Servers, since WARP acts as local DNS server that performs DNS queries in a secure manner, however, if a user is connected to WARP over an IPv6-capable network, te WARP client did not assign loopback IPv6 addresses but Unique Local Addresses, which under certain conditions could point towards unknown devices in the same local network which enables an Attacker to view DNS queries made by the device.
high complexity
cloudflare CWE-319
6.8