Vulnerabilities > Insecure Storage of Sensitive Information
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-09-27 | CVE-2019-9253 | Insecure Storage of Sensitive Information vulnerability in Google Android 10.0 In KeyStore, there is a possible storage of symmetric keys in the TEE instead of the strongbox due to a missing strongbox flag. | 4.4 |
| 2019-08-22 | CVE-2019-5633 | Insecure Storage of Sensitive Information vulnerability in Belwith-Keeler Hickory Smart An insecure storage of sensitive information vulnerability is present in Hickory Smart for iOS mobile devices from Belwith Products, LLC. | 5.5 |
| 2019-08-22 | CVE-2019-5632 | Insecure Storage of Sensitive Information vulnerability in Belwith-Keeler Hickory Smart 01.01.40/01.01.43 An insecure storage of sensitive information vulnerability is present in Hickory Smart for Android mobile devices from Belwith Products, LLC. | 5.5 |
| 2019-08-01 | CVE-2018-20886 | Insecure Storage of Sensitive Information vulnerability in Cpanel cPanel before 74.0.0 insecurely stores phpMyAdmin session files (SEC-418). | 5.3 |
| 2019-07-17 | CVE-2019-12914 | Insecure Storage of Sensitive Information vulnerability in Rdbrck Shift Redbrick Shift through 3.4.3 allows an attacker to extract authentication tokens of services (such as Gmail, Outlook, etc.) used in the application. | 7.5 |
| 2019-07-17 | CVE-2019-12911 | Insecure Storage of Sensitive Information vulnerability in Rdbrck Shift Redbrick Shift through 3.4.3 allows an attacker to extract authentication tokens of services (such as Gmail, Outlook, etc.) used in the application. | 7.5 |
| 2019-05-13 | CVE-2019-3684 | Insecure Storage of Sensitive Information vulnerability in Suse Manager 1.7/2.1/4.0.7 SUSE Manager until version 4.0.7 and Uyuni until commit 1b426ad5ed0a7191a6fb46bb83e98ae4b99a5ade created world-readable swap files on systems that don't have a swap already configured and don't have btrfs as filesystem | 5.9 |
| 2018-02-22 | CVE-2017-5250 | Insecure Storage of Sensitive Information vulnerability in Insteon for HUB 1.9.7 In version 1.9.7 and prior of Insteon's Insteon for Hub Android app, the OAuth token used by the app to authorize user access is not stored in an encrypted and secure manner. | 9.8 |
| 2018-02-22 | CVE-2017-5249 | Insecure Storage of Sensitive Information vulnerability in Wink 6.1.0.19 In version 6.1.0.19 and prior of Wink Labs's Wink - Smart Home Android app, the OAuth token used by the app to authorize user access is not stored in an encrypted and secure manner. | 9.8 |
| 2017-11-16 | CVE-2017-16560 | Insecure Storage of Sensitive Information vulnerability in Sandisk Secureaccess 3.01 SanDisk Secure Access 3.01 vault decrypts and copies encrypted files to a temporary folder, where they can remain indefinitely in certain situations, such as if the file is being edited when the user exits the application or if the application crashes. | 4.3 |