Vulnerabilities > Credentials Management
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-05-15 | CVE-2016-9750 | Credentials Management vulnerability in IBM Qradar Security Information and Event Manager 7.2.0/7.3.0 IBM QRadar 7.2 and 7.3 stores user credentials in plain in clear text which can be read by an authenticated user. | 6.5 |
| 2017-05-11 | CVE-2016-9100 | Credentials Management vulnerability in Broadcom Advanced Secure Gateway and Symantec Proxysg Symantec Advanced Secure Gateway (ASG) 6.6 prior to 6.6.5.13, ASG 6.7 prior to 6.7.3.1, ProxySG 6.5 prior to 6.5.10.6, ProxySG 6.6 prior to 6.6.5.13, and ProxySG 6.7 prior to 6.7.3.1 are susceptible to an information disclosure vulnerability. | 7.8 |
| 2017-04-26 | CVE-2016-8962 | Credentials Management vulnerability in IBM Bigfix Inventory 9.0/9.2 IBM BigFix Inventory 9.2 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. | 5.9 |
| 2017-04-24 | CVE-2015-8109 | Credentials Management vulnerability in Lenovo System Update 5.07.0013 Lenovo System Update (formerly ThinkVantage System Update) before 5.07.0019 allows local users to gain privileges by making a prediction of tvsu_tmp_xxxxxXXXXX account credentials that requires knowledge of the time that this account was created, aka a "temporary administrator account vulnerability." | 7.0 |
| 2017-04-13 | CVE-2015-8282 | Credentials Management vulnerability in Seawell Networks Spectrum SDC 02.05.00 SeaWell Networks Spectrum SDC 02.05.00 has a default password of "admin" for the "admin" account. | 9.8 |
| 2017-04-10 | CVE-2016-5070 | Credentials Management vulnerability in Sierrawireless Aleos Firmware 4.3.2 Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 store passwords in cleartext. | 9.8 |
| 2017-04-10 | CVE-2016-5066 | Credentials Management vulnerability in Sierrawireless Aleos Firmware 4.3.2 Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 have weak passwords for admin, rauser, sconsole, and user. | 9.8 |
| 2017-03-23 | CVE-2015-8626 | Credentials Management vulnerability in Mediawiki The User::randomPassword function in MediaWiki before 1.23.12, 1.24.x before 1.24.5, 1.25.x before 1.25.4, and 1.26.x before 1.26.1 generates passwords smaller than $wgMinimalPasswordLength, which makes it easier for remote attackers to obtain access via a brute-force attack. | 9.8 |
| 2017-02-20 | CVE-2016-4670 | Credentials Management vulnerability in Apple Iphone OS An issue was discovered in certain Apple products. | 3.3 |
| 2017-02-13 | CVE-2016-9355 | Credentials Management vulnerability in BD Alaris 8015 PC Unit 9.5/9.7 An issue was discovered in Becton, Dickinson and Company (BD) Alaris 8015 Point of Care (PC) unit, Version 9.5 and prior versions, and Version 9.7. | 5.3 |