Vulnerabilities > Insufficiently Protected Credentials
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-04-14 | CVE-2020-5260 | Insufficiently Protected Credentials vulnerability in multiple products Affected versions of Git have a vulnerability whereby Git can be tricked into sending private credentials to a host controlled by an attacker. | 7.5 |
| 2020-04-14 | CVE-2020-6195 | Insufficiently Protected Credentials vulnerability in SAP Businessobjects Business Intelligence Platform 4.1/4.2 SAP Business Objects Business Intelligence Platform (CMC), version 4.1, 4.2, shows cleartext password in the response, leading to Information Disclosure. | 9.8 |
| 2020-04-10 | CVE-2020-11694 | Insufficiently Protected Credentials vulnerability in Jetbrains Pycharm 2019.2.5/2019.3 In JetBrains PyCharm 2019.2.5 and 2019.3 on Windows, Apple Notarization Service credentials were included. | 7.5 |
| 2020-04-10 | CVE-2020-5406 | Insufficiently Protected Credentials vulnerability in VMWare Tanzu Application Service for VMS VMware Tanzu Application Service for VMs, 2.6.x versions prior to 2.6.18, 2.7.x versions prior to 2.7.11, and 2.8.x versions prior to 2.8.5, includes a version of PCF Autoscaling that writes database connection properties to its log, including database username and password. | 6.5 |
| 2020-04-09 | CVE-2020-5263 | Insufficiently Protected Credentials vulnerability in Auth0 Auth0.Js auth0.js (NPM package auth0-js) greater than version 8.0.0 and before version 9.12.3 has a vulnerability. | 4.9 |
| 2020-04-09 | CVE-2020-11557 | Insufficiently Protected Credentials vulnerability in Castlerock Snmpc Online 12.10.10 An issue was discovered in Castle Rock SNMPc Online 12.10.10 before 2020-01-28. | 7.5 |
| 2020-04-09 | CVE-2020-11555 | Insufficiently Protected Credentials vulnerability in Castlerock Snmpc Online 12.10.10 An issue was discovered in Castle Rock SNMPc Online 12.10.10 before 2020-01-28. | 7.5 |
| 2020-04-08 | CVE-2020-1978 | Insufficiently Protected Credentials vulnerability in Paloaltonetworks Pan-Os and Vm-Series TechSupport files generated on Palo Alto Networks VM Series firewalls for Microsoft Azure platform configured with high availability (HA) inadvertently collect Azure dashboard service account credentials. | 4.4 |
| 2020-04-08 | CVE-2020-11629 | Insufficiently Protected Credentials vulnerability in Primekey Ejbca An issue was discovered in EJBCA before 6.15.2.6 and 7.x before 7.3.1.2. | 7.2 |
| 2020-04-07 | CVE-2020-11560 | Insufficiently Protected Credentials vulnerability in Nchsoftware Express Invoice 7.25 NCH Express Invoice 7.25 allows local users to discover the cleartext password by reading the configuration file. | 7.8 |