Vulnerabilities > Insufficiently Protected Credentials
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-08-07 | CVE-2020-15062 | Insufficiently Protected Credentials vulnerability in Digitus Da-70254 Firmware 2.073.000.E0008 DIGITUS DA-70254 4-Port Gigabit Network Hub 2.073.000.E0008 devices allow an attacker on the same network to elevate privileges because the administrative password can be discovered by sniffing unencrypted UDP traffic. | 8.8 |
| 2020-08-07 | CVE-2020-15058 | Insufficiently Protected Credentials vulnerability in Lindy-International 42633 Firmware 2.078.000 Lindy 42633 4-Port USB 2.0 Gigabit Network Server 2.078.000 devices allow an attacker on the same network to elevate privileges because the administrative password can be discovered by sniffing unencrypted UDP traffic. | 8.8 |
| 2020-08-07 | CVE-2020-15054 | Insufficiently Protected Credentials vulnerability in Tp-Link Tl-Ps310U Firmware TP-Link USB Network Server TL-PS310U devices before 2.079.000.t0210 allow an attacker on the same network to elevate privileges because the administrative password can be discovered by sniffing unencrypted UDP traffic. | 8.8 |
| 2020-07-31 | CVE-2020-14334 | Insufficiently Protected Credentials vulnerability in Redhat Satellite 6.0 A flaw was found in Red Hat Satellite 6 which allows privileged attacker to read cache files. | 8.8 |
| 2020-07-29 | CVE-2020-2078 | Insufficiently Protected Credentials vulnerability in Sick Package Analytics 04.0.0/04.1.1 Passwords are stored in plain text within the configuration of SICK Package Analytics software up to and including V04.1.1. | 6.5 |
| 2020-07-29 | CVE-2020-14489 | Insufficiently Protected Credentials vulnerability in Openclinic GA Project Openclinic GA 5.09.02/5.89.05B OpenClinic GA 5.09.02 and 5.89.05b stores passwords using inadequate hashing complexity, which may allow an attacker to recover passwords using known password cracking techniques. | 7.5 |
| 2020-07-27 | CVE-2020-10609 | Insufficiently Protected Credentials vulnerability in Grundfos CIM 500 06.16.00 Grundfos CIM 500 v06.16.00 stores plaintext credentials, which may allow sensitive information to be read or allow modification to system settings by someone with access to the device. | 7.5 |
| 2020-07-27 | CVE-2020-4408 | Insufficiently Protected Credentials vulnerability in IBM Qradar Advisory The IBM QRadar Advisor 1.1 through 2.5.2 with Watson App for IBM QRadar SIEM does not adequately mask all passwords during input, which could be obtained by a physical attacker nearby. | 4.6 |
| 2020-07-22 | CVE-2020-4372 | Insufficiently Protected Credentials vulnerability in IBM Verify Gateway 1.0.0/1.0.1 IBM Verify Gateway (IVG) 1.0.0 and 1.0.1 stores user credentials in plain in clear text which can be read by a local user. | 7.8 |
| 2020-07-16 | CVE-2020-4095 | Insufficiently Protected Credentials vulnerability in Hcltech Bigfix Platform "BigFix Platform is storing clear text credentials within the system's memory. | 6.0 |