Vulnerabilities > Cleartext Transmission of Sensitive Information

DATE CVE VULNERABILITY TITLE RISK
2023-07-10 CVE-2023-3272 Cleartext Transmission of Sensitive Information vulnerability in Sick Icr890-4 Firmware
Cleartext Transmission of Sensitive Information in the SICK ICR890-4 could allow a remote attacker to gather sensitive information by intercepting network traffic that is not encrypted.
network
low complexity
sick CWE-319
7.5
7.5
2023-06-28 CVE-2023-21219 Cleartext Transmission of Sensitive Information vulnerability in Google Android
there is a possible use of unencrypted transport over cellular networks due to an insecure default value.
network
low complexity
google CWE-319
7.5
7.5
2023-06-28 CVE-2023-21220 Cleartext Transmission of Sensitive Information vulnerability in Google Android
there is a possible use of unencrypted transport over cellular networks due to an insecure default value.
network
low complexity
google CWE-319
7.5
7.5
2023-06-19 CVE-2023-31410 Cleartext Transmission of Sensitive Information vulnerability in Sick Eventcam APP
A remote unprivileged attacker can intercept the communication via e.g.
network
high complexity
sick CWE-319
7.4
7.4
2023-06-15 CVE-2023-23841 Cleartext Transmission of Sensitive Information vulnerability in Solarwinds Serv-U
SolarWinds Serv-U is submitting an HTTP request when changing or updating the attributes for File Share or File request.? Part of the URL of the request discloses sensitive data. 
network
low complexity
solarwinds CWE-319
7.5
7.5
2023-06-13 CVE-2023-31195 Cleartext Transmission of Sensitive Information vulnerability in Asus Rt-Ax3000 Firmware
ASUS Router RT-AX3000 Firmware versions prior to 3.0.0.4.388.23403 uses sensitive cookies without 'Secure' attribute.
network
high complexity
asus CWE-319
5.3
5.3
2023-06-13 CVE-2022-41327 Cleartext Transmission of Sensitive Information vulnerability in Fortinet Fortios and Fortiproxy
A cleartext transmission of sensitive information vulnerability [CWE-319] in Fortinet FortiOS version 7.2.0 through 7.2.4, 7.0.0 through 7.0.8, FortiProxy version 7.2.0 through 7.2.1 and 7.0.0 through 7.0.8 allows an authenticated attacker with readonly superadmin privileges to intercept traffic in order to obtain other adminstrators cookies via diagnose CLI commands.
local
low complexity
fortinet CWE-319
4.4
4.4
2023-06-05 CVE-2023-27861 Cleartext Transmission of Sensitive Information vulnerability in IBM Maximo Application Suite 8.8.0/8.9.0
IBM Maximo Application Suite - Manage Component 8.8.0 and 8.9.0 transmits sensitive information in cleartext that could be intercepted by an attacker using man in the middle techniques.
network
high complexity
ibm CWE-319
5.9
5.9
2023-06-02 CVE-2023-30602 Cleartext Transmission of Sensitive Information vulnerability in Hitrontech Coda-5310 Firmware 7.2.4.7.1B3
Hitron Technologies CODA-5310’s Telnet function transfers sensitive data in plaintext.
network
low complexity
hitrontech CWE-319
7.5
7.5
2023-06-01 CVE-2023-33960 Cleartext Transmission of Sensitive Information vulnerability in Openproject
OpenProject is web-based project management software.
network
low complexity
openproject CWE-319
7.5
7.5