Vulnerabilities > Insecure Storage of Sensitive Information
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-11-13 | CVE-2020-4886 | Insecure Storage of Sensitive Information vulnerability in IBM Infosphere Information Server 11.7 IBM InfoSphere Information Server 11.7 stores sensitive information in the browser's history that could be obtained by a user who has access to the same system. | 2.1 |
| 2020-10-29 | CVE-2020-11484 | Insecure Storage of Sensitive Information vulnerability in Intel BMC Firmware 1.06.06/2.47 NVIDIA DGX servers, all DGX-1 with BMC firmware versions prior to 3.38.30, contains a vulnerability in the AMI BMC firmware in which an attacker with administrative privileges can obtain the hash of the BMC/IPMI user password, which may lead to information disclosure. | 4.0 |
| 2020-10-27 | CVE-2019-8898 | Insecure Storage of Sensitive Information vulnerability in Apple products An information disclosure issue existed in the handling of the Storage Access API. | 4.3 |
| 2020-10-27 | CVE-2019-8799 | Insecure Storage of Sensitive Information vulnerability in Apple products This issue was resolved by replacing device names with a random identifier. | 2.1 |
| 2020-10-27 | CVE-2019-8790 | Insecure Storage of Sensitive Information vulnerability in Apple Swift This issue was addresses by updating incorrect URLSession file descriptors management logic to match Swift 5.0. | 2.1 |
| 2020-10-19 | CVE-2020-13937 | Insecure Storage of Sensitive Information vulnerability in Apache Kylin Apache Kylin 2.0.0, 2.1.0, 2.2.0, 2.3.0, 2.3.1, 2.3.2, 2.4.0, 2.4.1, 2.5.0, 2.5.1, 2.5.2, 2.6.0, 2.6.1, 2.6.2, 2.6.3, 2.6.4, 2.6.5, 2.6.6, 3.0.0-alpha, 3.0.0-alpha2, 3.0.0-beta, 3.0.0, 3.0.1, 3.0.2, 3.1.0, 4.0.0-alpha has one restful api which exposed Kylin's configuration information without any authentication, so it is dangerous because some confidential information entries will be disclosed to everyone. | 5.0 |
| 2020-10-14 | CVE-2020-0422 | Insecure Storage of Sensitive Information vulnerability in Google Android In constructImportFailureNotification of NotificationImportExportListener.java, there is a possible permissions bypass due to an unsafe PendingIntent. | 2.1 |
| 2020-09-25 | CVE-2020-26104 | Insecure Storage of Sensitive Information vulnerability in Cpanel In cPanel before 88.0.3, an insecure SRS secret is used on a templated VM (SEC-552). | 5.0 |
| 2020-09-21 | CVE-2020-4315 | Insecure Storage of Sensitive Information vulnerability in IBM Business Automation Content Analyzer ON Cloud 1.0 IBM Business Automation Content Analyzer on Cloud 1.0 does not set the secure attribute on authorization tokens or session cookies. | 4.3 |
| 2020-09-18 | CVE-2020-15775 | Insecure Storage of Sensitive Information vulnerability in Gradle Enterprise An issue was discovered in Gradle Enterprise 2017.1 - 2020.2.4. | 7.5 |