Vulnerabilities > Insecure Storage of Sensitive Information
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-09-07 | CVE-2022-35513 | Insecure Storage of Sensitive Information vulnerability in Blink1 Blink1Control2 The Blink1Control2 application <= 2.2.7 uses weak password encryption and an insecure method of storage. | 7.5 |
| 2022-06-27 | CVE-2022-28168 | Insecure Storage of Sensitive Information vulnerability in Broadcom Sannav 2.1.0/2.1.1/2.2.0.0 In Brocade SANnav before Brocade SANnav v2.2.0.2 and Brocade SANnav2.1.1.8, encoded scp-server passwords are stored using Base64 encoding, which could allow an attacker able to access log files to easily decode the passwords. | 5.0 |
| 2022-06-07 | CVE-2022-30740 | Insecure Storage of Sensitive Information vulnerability in Samsung Internet Improper auto-fill algorithm in Samsung Internet prior to version 17.0.1.69 allows physical attackers to guess stored credit card numbers. | 2.1 |
| 2022-06-02 | CVE-2021-43512 | Insecure Storage of Sensitive Information vulnerability in Flightradar24 Flight Tracker An issue was discovered in FlightRadar24 v8.9.0, v8.10.0, v8.10.2, v8.10.3, v8.10.4 for Android, allows attackers to cause unspecified consequences due to being able to decompile a local application and extract their API keys. | 5.5 |
| 2022-05-12 | CVE-2022-1044 | Insecure Storage of Sensitive Information vulnerability in Trudesk Project Trudesk Sensitive Data Exposure Due To Insecure Storage Of Profile Image in GitHub repository polonel/trudesk prior to v1.2.1. | 4.3 |
| 2022-04-27 | CVE-2021-25266 | Insecure Storage of Sensitive Information vulnerability in Sophos Authenticator and Intercept X An insecure data storage vulnerability allows a physical attacker with root privileges to retrieve TOTP secret keys from unlocked phones in Sophos Authenticator for Android version 3.4 and older, and Intercept X for Mobile (Android) before version 9.7.3495. | 2.1 |
| 2022-04-14 | CVE-2022-1257 | Insecure Storage of Sensitive Information vulnerability in Mcafee Agent Insecure storage of sensitive information vulnerability in MA for Linux, macOS, and Windows prior to 5.7.6 allows a local user to gain access to sensitive information through storage in ma.db. | 5.5 |
| 2022-03-23 | CVE-2021-27456 | Insecure Storage of Sensitive Information vulnerability in Phillips products Philips Gemini PET/CT family software stores sensitive information in a removable media device that does not have built-in access control. | 2.1 |
| 2022-03-09 | CVE-2022-0881 | Insecure Storage of Sensitive Information vulnerability in Framasoft Peertube Insecure Storage of Sensitive Information in GitHub repository chocobozzz/peertube prior to 4.1.1. | 4.0 |
| 2022-02-25 | CVE-2022-25264 | Insecure Storage of Sensitive Information vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2021.2.3, environment variables of the "password" type could be logged in some cases. | 5.0 |