Vulnerabilities > Insufficiently Protected Credentials
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-15 | CVE-2024-7813 | Insufficiently Protected Credentials vulnerability in Prison Management System Project Prison Management System 1.0 A vulnerability, which was classified as problematic, has been found in SourceCodester Prison Management System 1.0. | 7.5 |
| 2024-08-14 | CVE-2024-39818 | Insufficiently Protected Credentials vulnerability in Zoom products Protection mechanism failure for some Zoom Workplace Apps and SDKs may allow an authenticated user to conduct information disclosure via network access. | 6.5 |
| 2024-08-05 | CVE-2024-6118 | Insufficiently Protected Credentials vulnerability in Hamastar Meetinghub Paperless Meetings 2021 A Plaintext Storage of a Password vulnerability in ebooknote function in Hamastar MeetingHub Paperless Meetings 2021 allows remote attackers to obtain the other users’ credentials and gain access to the product via an XML file. | 9.1 |
| 2024-07-31 | CVE-2024-3082 | Insufficiently Protected Credentials vulnerability in Proges Sensor NET Connect Firmware V2 2.24 A “CWE-256: Plaintext Storage of a Password” affecting the administrative account allows an attacker with physical access to the machine to retrieve the password in cleartext unless specific security measures at other layers (e.g., full-disk encryption) have been enabled. | 4.6 |
| 2024-07-14 | CVE-2024-39733 | Insufficiently Protected Credentials vulnerability in IBM Datacap IBM Datacap Navigator 9.1.5, 9.1.6, 9.1.7, 9.1.8, and 9.1.9 stores user credentials in plain clear text which can be read by a local user. | 5.5 |
| 2024-07-01 | CVE-2024-39878 | Insufficiently Protected Credentials vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2024.03.3 private key could be exposed via testing GitHub App Connection | 5.3 |
| 2024-07-01 | CVE-2024-39879 | Insufficiently Protected Credentials vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2024.03.3 application token could be exposed in EC2 Cloud Profile settings | 5.3 |
| 2024-06-18 | CVE-2024-38505 | Insufficiently Protected Credentials vulnerability in Jetbrains Youtrack In JetBrains YouTrack before 2024.2.34646 user access token was sent to the third-party site | 7.5 |
| 2024-06-13 | CVE-2024-25052 | Insufficiently Protected Credentials vulnerability in IBM Jazz Reporting Service 7.0.3 IBM Jazz Reporting Service 7.0.3 stores user credentials in plain clear text which can be read by an admin user. | 4.4 |
| 2024-06-11 | CVE-2024-35208 | Insufficiently Protected Credentials vulnerability in Siemens Sinec Traffic Analyzer A vulnerability has been identified in SINEC Traffic Analyzer (6GK8822-1BG01-0BA0) (All versions < V1.2). | 5.5 |