Vulnerabilities > Insufficiently Protected Credentials

DATE	CVE	VULNERABILITY TITLE	RISK
2023-02-15	CVE-2023-23466	Insufficiently Protected Credentials vulnerability in Mediacp Media Control Panel 2.13.1 Media CP Media Control Panel latest version. network low complexity mediacp CWE-522	7.5
2023-02-15	CVE-2023-24498	Insufficiently Protected Credentials vulnerability in Netgear Prosafe Fs726Tp Firmware An uspecified endpoint in the web server of the switch does not properly authenticate the user identity, and may allow downloading a config page with the password to the switch in clear text. network low complexity netgear CWE-522	7.5
2023-02-15	CVE-2023-25191	Insufficiently Protected Credentials vulnerability in AMI Megarac Sp-X 12/13 AMI MegaRAC SPX devices allow Password Disclosure through Redfish. network low complexity ami CWE-522	7.5
2023-02-13	CVE-2023-24619	Insufficiently Protected Credentials vulnerability in Redpanda Redpanda before 22.3.12 discloses cleartext AWS credentials. local low complexity redpanda CWE-522	5.5
2023-02-13	CVE-2022-43460	Insufficiently Protected Credentials vulnerability in Fujifilm Driver Distributor 2.2.3.1 Driver Distributor v2.2.3.1 and earlier contains a vulnerability where passwords are stored in a recoverable format. network low complexity fujifilm CWE-522	7.5
2023-02-11	CVE-2022-34445	Insufficiently Protected Credentials vulnerability in Dell Powerscale Onefs Dell PowerScale OneFS, versions 8.2.x through 9.3.x contain a weak encoding for a password. local low complexity dell CWE-522	4.4
2023-01-30	CVE-2022-32518	Insufficiently Protected Credentials vulnerability in Schneider-Electric Data Center Expert A CWE-522: Insufficiently Protected Credentials vulnerability exists that could result in unwanted access to a DCE instance when performed over a network by a malicious third-party. network low complexity schneider-electric CWE-522 critical	9.8
2023-01-30	CVE-2022-32519	Insufficiently Protected Credentials vulnerability in Schneider-Electric Data Center Expert A CWE-257: Storing Passwords in a Recoverable Format vulnerability exists that could result in unwanted access to a DCE instance when performed over a network by a malicious third-party. network low complexity schneider-electric CWE-522 critical	9.8
2023-01-30	CVE-2022-32520	Insufficiently Protected Credentials vulnerability in Schneider-Electric Data Center Expert A CWE-522: Insufficiently Protected Credentials vulnerability exists that could result in unwanted access to a DCE instance when performed over a network by a malicious third-party. network low complexity schneider-electric CWE-522 critical	9.8
2023-01-23	CVE-2022-4693	Insufficiently Protected Credentials vulnerability in Pickplugins User Verification The User Verification WordPress plugin before 1.0.94 was affected by an Auth Bypass security vulnerability. network low complexity pickplugins CWE-522 critical	9.8