Vulnerabilities > Insufficiently Protected Credentials
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-06-14 | CVE-2022-30231 | Insufficiently Protected Credentials vulnerability in Siemens Sicam Gridedge Essential A vulnerability has been identified in SICAM GridEdge Essential ARM (All versions < V2.6.6), SICAM GridEdge Essential Intel (All versions < V2.6.6), SICAM GridEdge Essential with GDS ARM (All versions < V2.6.6), SICAM GridEdge Essential with GDS Intel (All versions < V2.6.6). | 4.3 |
| 2022-06-06 | CVE-2022-30587 | Insufficiently Protected Credentials vulnerability in Gradle Enterprise 2022.2 Gradle Enterprise through 2022.2.2 has Incorrect Access Control that leads to information disclosure. | 7.5 |
| 2022-06-06 | CVE-2022-22396 | Insufficiently Protected Credentials vulnerability in IBM Spectrum Protect Plus Credentials are printed in clear text in the IBM Spectrum Protect Plus 10.1.0.0 through 10.1.9.3 virgo log file in certain cases. | 7.5 |
| 2022-06-02 | CVE-2022-22557 | Insufficiently Protected Credentials vulnerability in Dell Powerstoreos PowerStore contains Plain-Text Password Storage Vulnerability in PowerStore X & T environments running versions 2.0.0.x and 2.0.1.x A locally authenticated attacker could potentially exploit this vulnerability, leading to the disclosure of certain user credentials. | 7.8 |
| 2022-06-02 | CVE-2022-29085 | Insufficiently Protected Credentials vulnerability in Dell products Dell Unity, Dell UnityVSA, and Dell Unity XT versions prior to 5.2.0.0.5.173 contain a plain-text password storage vulnerability when certain off-array tools are run on the system. | 6.7 |
| 2022-06-02 | CVE-2022-22767 | Insufficiently Protected Credentials vulnerability in BD products Specific BD Pyxis™ products were installed with default credentials and may presently still operate with these credentials. | 8.8 |
| 2022-06-02 | CVE-2022-27774 | Insufficiently Protected Credentials vulnerability in multiple products An insufficiently protected credentials vulnerability exists in curl 4.9 to and include curl 7.82.0 are affected that could allow an attacker to extract credentials when follows HTTP(S) redirects is used with authentication could leak credentials to other services that exist on different protocols or port numbers. | 5.7 |
| 2022-06-02 | CVE-2022-27776 | Insufficiently Protected Credentials vulnerability in multiple products A insufficiently protected credentials vulnerability in fixed in curl 7.83.0 might leak authentication or cookie header data on HTTP redirects to the same host but another port number. | 6.5 |
| 2022-05-19 | CVE-2022-1413 | Insufficiently Protected Credentials vulnerability in Gitlab Missing input masking in GitLab CE/EE affecting all versions starting from 1.0.2 before 14.8.6, all versions from 14.9.0 before 14.9.4, and all versions from 14.10.0 before 14.10.1 causes potentially sensitive integration properties to be disclosed in the web interface | 7.5 |
| 2022-05-19 | CVE-2022-30018 | Insufficiently Protected Credentials vulnerability in Mobotix Mxcontrolcenter 2.5.4.5 Mobotix Control Center (MxCC) through 2.5.4.5 has Insufficiently Protected Credentials, Storing Passwords in a Recoverable Format via the MxCC.ini config file. | 8.8 |