Vulnerabilities > Insufficiently Protected Credentials
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-09-01 | CVE-2021-39045 | Insufficiently Protected Credentials vulnerability in multiple products IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 could allow a local attacker to obtain information due to the autocomplete feature on password input fields. | 5.5 |
| 2022-08-30 | CVE-2022-27560 | Insufficiently Protected Credentials vulnerability in Hcltech Versionvault Express 2.0.1/2.1.0 HCL VersionVault Express exposes administrator credentials. | 6.5 |
| 2022-08-26 | CVE-2021-20260 | Insufficiently Protected Credentials vulnerability in Theforeman Foreman A flaw was found in the Foreman project. | 7.8 |
| 2022-08-24 | CVE-2022-34837 | Insufficiently Protected Credentials vulnerability in ABB Zenon Storing Passwords in a Recoverable Format vulnerability in ABB Zenon 8.20 allows an attacker who successfully exploit the vulnerability may add more network clients that may monitor various activities of the Zenon. | 6.1 |
| 2022-08-24 | CVE-2022-34838 | Insufficiently Protected Credentials vulnerability in ABB Zenon Storing Passwords in a Recoverable Format vulnerability in ABB Zenon 8.20 allows an attacker who successfully exploit the vulnerability may add or alter data points and corresponding attributes. | 8.4 |
| 2022-08-23 | CVE-2022-38663 | Insufficiently Protected Credentials vulnerability in Jenkins GIT Jenkins Git Plugin 4.11.4 and earlier does not properly mask (i.e., replace with asterisks) credentials in the build log provided by the Git Username and Password (`gitUsernamePassword`) credentials binding. | 6.5 |
| 2022-08-23 | CVE-2022-38665 | Insufficiently Protected Credentials vulnerability in Jenkins Collabnet Jenkins CollabNet Plugins Plugin 2.0.8 and earlier stores a RabbitMQ password unencrypted in its global configuration file on the Jenkins controller where it can be viewed by users with access to the Jenkins controller file system. | 6.5 |
| 2022-08-23 | CVE-2020-35992 | Insufficiently Protected Credentials vulnerability in Fiserv Prologue 20201216 Fiserv Prologue through 2020-12-16 does not properly protect the database password. | 6.5 |
| 2022-08-18 | CVE-2022-30601 | Insufficiently Protected Credentials vulnerability in Intel products Insufficiently protected credentials for Intel(R) AMT and Intel(R) Standard Manageability may allow an unauthenticated user to potentially enable information disclosure and escalation of privilege via network access. | 9.8 |
| 2022-08-18 | CVE-2022-30944 | Insufficiently Protected Credentials vulnerability in Intel products Insufficiently protected credentials for Intel(R) AMT and Intel(R) Standard Manageability may allow a privileged user to potentially enable information disclosure via local access. | 5.5 |