Vulnerabilities > Insufficiently Protected Credentials
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-02-03 | CVE-2013-2672 | Insufficiently Protected Credentials vulnerability in Brother Mfc-9970Cdw Firmware 1.10 Brother MFC-9970CDW devices with firmware 0D allow cleartext submission of passwords. | 5.0 |
| 2020-01-31 | CVE-2020-8422 | Insufficiently Protected Credentials vulnerability in Zohocorp Manageengine Remote Access Plus An authorization issue was discovered in the Credential Manager feature in Zoho ManageEngine Remote Access Plus before 10.0.450. | 4.0 |
| 2020-01-31 | CVE-2013-5113 | Insufficiently Protected Credentials vulnerability in Logmein Lastpass LastPass prior to 2.5.1 has an insecure PIN implementation. | 1.9 |
| 2020-01-30 | CVE-2020-7909 | Insufficiently Protected Credentials vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2019.1.5, some server-stored passwords could be shown via the web UI. | 5.0 |
| 2020-01-30 | CVE-2020-7908 | Insufficiently Protected Credentials vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2019.1.5, reverse tabnabbing was possible on several pages. | 4.3 |
| 2020-01-29 | CVE-2020-2107 | Insufficiently Protected Credentials vulnerability in Jenkins Fortify 19.1.28/19.1.29 Jenkins Fortify Plugin 19.1.29 and earlier stores proxy server passwords unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system. | 4.3 |
| 2020-01-28 | CVE-2014-3445 | Insufficiently Protected Credentials vulnerability in Handsomeweb SOS Webpages backup.php in HandsomeWeb SOS Webpages before 1.1.12 does not require knowledge of the cleartext password, which allows remote attackers to bypass authentication by leveraging knowledge of the administrator password hash. | 7.5 |
| 2020-01-28 | CVE-2014-2581 | Insufficiently Protected Credentials vulnerability in multiple products Smb4K before 1.1.1 allows remote attackers to obtain credentials via vectors related to the cuid option in the "Additional options" line edit. | 5.0 |
| 2020-01-27 | CVE-2019-19539 | Insufficiently Protected Credentials vulnerability in HP products An issue was discovered in Idelji Web ViewPoint H01ABO-H01BY and L01ABP-L01ABZ, Web ViewPoint Plus H01AAG-H01AAQ and L01AAH-L01AAR, and Web ViewPoint Enterprise H01-H01AAE and L01-L01AAF. | 2.1 |
| 2020-01-27 | CVE-2019-19823 | Insufficiently Protected Credentials vulnerability in multiple products A certain router administration interface (that includes Realtek APMIB 0.11f for Boa 0.94.14rc21) stores cleartext administrative passwords in flash memory and in a file. | 5.0 |