Vulnerabilities > Insufficiently Protected Credentials
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-04-08 | CVE-2020-1978 | Insufficiently Protected Credentials vulnerability in Paloaltonetworks Pan-Os and Vm-Series TechSupport files generated on Palo Alto Networks VM Series firewalls for Microsoft Azure platform configured with high availability (HA) inadvertently collect Azure dashboard service account credentials. | 1.9 |
2020-04-07 | CVE-2020-11560 | Insufficiently Protected Credentials vulnerability in Nchsoftware Express Invoice 7.25 NCH Express Invoice 7.25 allows local users to discover the cleartext password by reading the configuration file. | 7.8 |
2020-04-07 | CVE-2017-18695 | Insufficiently Protected Credentials vulnerability in Google Android An issue was discovered on Samsung mobile devices with KK(4.4), L(5.0/5.1), M(6.0), and N(7.0) software. | 3.5 |
2020-04-07 | CVE-2016-11029 | Insufficiently Protected Credentials vulnerability in Google Android An issue was discovered on Samsung mobile devices with L(5.0/5.1), M(6.0), and N(7.0) software. | 5.0 |
2020-04-02 | CVE-2019-19096 | Insufficiently Protected Credentials vulnerability in Hitachienergy Esoms The Redis data structure component used in ABB eSOMS versions 6.0 to 6.0.2 stores credentials in clear text. | 6.1 |
2020-04-01 | CVE-2019-3942 | Insufficiently Protected Credentials vulnerability in Advantech Webaccess 8.3.4 Advantech WebAccess 8.3.4 does not properly restrict an RPC call that allows unauthenticated, remote users to read files. | 5.0 |
2020-04-01 | CVE-2020-11449 | Insufficiently Protected Credentials vulnerability in Technicolor Tc7337 Firmware 8.89.17 An issue was discovered on Technicolor TC7337 8.89.17 devices. | 5.0 |
2020-03-25 | CVE-2020-10965 | Insufficiently Protected Credentials vulnerability in Teradici Pcoip Management Console 19.11.1/20.01.0 Teradici PCoIP Management Console 20.01.0 and 19.11.1 is vulnerable to unauthenticated password resets via login/resetadminpassword of the default admin account. | 6.8 |
2020-03-25 | CVE-2020-2165 | Insufficiently Protected Credentials vulnerability in Jfrog Artifactory Jenkins Artifactory Plugin 3.6.0 and earlier transmits configured passwords in plain text as part of its global Jenkins configuration form, potentially resulting in their exposure. | 7.5 |
2020-03-25 | CVE-2020-2164 | Insufficiently Protected Credentials vulnerability in Jfrog Artifactory Jenkins Artifactory Plugin 3.5.0 and earlier stores its Artifactory server password unencrypted in its global configuration file on the Jenkins master where it can be viewed by users with access to the master file system. | 6.5 |