Vulnerabilities > Insufficiently Protected Credentials
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-09-29 | CVE-2020-15341 | Insufficiently Protected Credentials vulnerability in Zyxel Cloudcnm Secumanager 3.1.0/3.1.1 Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 has an unauthenticated update_all_realm_license API. | 7.5 |
| 2022-09-29 | CVE-2020-15347 | Insufficiently Protected Credentials vulnerability in Zyxel Cloudcnm Secumanager 3.1.0/3.1.1 Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 has the q6xV4aW8bQ4cfD-b password for the axiros account. | 9.8 |
| 2022-09-28 | CVE-2022-29089 | Insufficiently Protected Credentials vulnerability in Dell Smartfabric Os10 Dell Networking OS10, versions prior to October 2021 with Smart Fabric Services enabled, contains an information disclosure vulnerability. | 4.9 |
| 2022-09-27 | CVE-2022-37193 | Insufficiently Protected Credentials vulnerability in Chipolo 4.13.0 Chipolo ONE Bluetooth tracker (2020) Chipolo iOS app version 4.13.0 is vulnerable to Incorrect Access Control. | 7.4 |
| 2022-09-21 | CVE-2022-41247 | Insufficiently Protected Credentials vulnerability in Jenkins Bigpanda Notifier Jenkins BigPanda Notifier Plugin 1.4.0 and earlier stores the BigPanda API key unencrypted in its global configuration file on the Jenkins controller where they can be viewed by users with access to the Jenkins controller file system. | 4.3 |
| 2022-09-21 | CVE-2022-41255 | Insufficiently Protected Credentials vulnerability in Jenkins Cons3Rt 1.0.0 Jenkins CONS3RT Plugin 1.0.0 and earlier stores Cons3rt API token unencrypted in job config.xml files on the Jenkins controller where it can be viewed by users with access to the Jenkins controller file system. | 6.5 |
| 2022-09-13 | CVE-2022-39816 | Insufficiently Protected Credentials vulnerability in Nokia 1350 Optical Management System 14.2 In NOKIA 1350 OMS R14.2, Insufficiently Protected Credentials (cleartext administrator password) occur in the edit configuration page. | 6.5 |
| 2022-09-09 | CVE-2022-36617 | Insufficiently Protected Credentials vulnerability in Haystacksoftware ARQ Backup 7.19.5.0 Arq Backup 7.19.5.0 and below stores backup encryption passwords using reversible encryption. | 4.9 |
| 2022-09-07 | CVE-2021-36783 | Insufficiently Protected Credentials vulnerability in Suse Rancher A Insufficiently Protected Credentials vulnerability in SUSE Rancher allows authenticated Cluster Owners, Cluster Members, Project Owners and Project Members to read credentials, passwords and API tokens that have been stored in cleartext and exposed via API endpoints. | 9.9 |
| 2022-09-02 | CVE-2022-34371 | Insufficiently Protected Credentials vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS, versions 9.0.0 up to and including 9.1.0.19, 9.2.1.12, 9.3.0.6, and 9.4.0.3, contain an unprotected transport of credentials vulnerability. | 9.8 |