Vulnerabilities > Insecure Storage of Sensitive Information
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-09-26 | CVE-2024-47197 | Insecure Storage of Sensitive Information vulnerability in Apache Maven Archetype 3.2.1 Exposure of Sensitive Information to an Unauthorized Actor, Insecure Storage of Sensitive Information vulnerability in Maven Archetype Plugin. This issue affects Maven Archetype Plugin: from 3.2.1 before 3.3.0. Users are recommended to upgrade to version 3.3.0, which fixes the issue. Archetype integration testing creates a file called ./target/classes/archetype-it/archetype-settings.xml This file contains all the content from the users ~/.m2/settings.xml file, which often contains information they do not want to publish. | 7.5 |
| 2024-07-19 | CVE-2024-6916 | Insecure Storage of Sensitive Information vulnerability in Zowe CLI A vulnerability in Zowe CLI allows local, privileged actors to display securely stored properties in cleartext within a terminal using the '--show-inputs-only' flag. | 5.5 |
| 2024-06-26 | CVE-2024-29953 | Insecure Storage of Sensitive Information vulnerability in Broadcom Fabric Operating System A vulnerability in the web interface in Brocade Fabric OS before v9.2.1, v9.2.0b, and v9.1.1d prints encoded session passwords on session storage for Virtual Fabric platforms. | 4.3 |
| 2024-06-11 | CVE-2023-6748 | Insecure Storage of Sensitive Information vulnerability in Wpgogo Custom Field Template The Custom Field Template plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.6.1 via the 'cft' shortcode. | 4.3 |
| 2024-06-06 | CVE-2024-5206 | Insecure Storage of Sensitive Information vulnerability in Scikit-Learn A sensitive data leakage vulnerability was identified in scikit-learn's TfidfVectorizer, specifically in versions up to and including 1.4.1.post1, which was fixed in version 1.5.0. | 4.7 |
| 2024-04-19 | CVE-2024-29968 | Insecure Storage of Sensitive Information vulnerability in Broadcom Brocade Sannav An information disclosure vulnerability exists in Brocade SANnav before v2.3.1 and v2.3.0a when Brocade SANnav instances are configured in disaster recovery mode. | 6.5 |
| 2024-04-19 | CVE-2024-29965 | Insecure Storage of Sensitive Information vulnerability in Broadcom Brocade Sannav In Brocade SANnav before v2.3.1, and v2.3.0a, it is possible to back up the appliance from the web interface or the command line interface ("SSH"). | 5.9 |
| 2024-04-10 | CVE-2024-31278 | Insecure Storage of Sensitive Information vulnerability in Leap13 Premium Addons for Elementor Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Leap13 Premium Addons for Elementor.This issue affects Premium Addons for Elementor: from n/a through 4.10.22. | 6.5 |
| 2024-03-04 | CVE-2024-21826 | Insecure Storage of Sensitive Information vulnerability in Openatom Openharmony in OpenHarmony v3.2.4 and prior versions allow a local attacker cause sensitive information leak through insecure storage. | 5.5 |
| 2024-02-21 | CVE-2023-42823 | Insecure Storage of Sensitive Information vulnerability in Apple products The issue was resolved by sanitizing logging This issue is fixed in watchOS 10.1, macOS Sonoma 14.1, tvOS 17.1, macOS Monterey 12.7.1, iOS 16.7.2 and iPadOS 16.7.2, iOS 17.1 and iPadOS 17.1, macOS Ventura 13.6.1. | 5.5 |