Vulnerabilities > Insufficiently Protected Credentials
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-01-10 | CVE-2012-3823 | Insufficiently Protected Credentials vulnerability in Arialsoftware Campaign Enterprise Arial Campaign Enterprise before 11.0.551 stores passwords in clear text and these may be retrieved. | 5.0 |
2020-01-10 | CVE-2019-4508 | Insufficiently Protected Credentials vulnerability in IBM Qradar Security Information and Event Manager IBM QRadar SIEM 7.3.0 through 7.3.3 uses weak credential storage in some instances which could be decrypted by a local attacker. | 2.1 |
2020-01-10 | CVE-2014-5093 | Insufficiently Protected Credentials vulnerability in Status2K Status2k does not remove the install directory allowing credential reset. | 5.0 |
2020-01-07 | CVE-2019-6700 | Insufficiently Protected Credentials vulnerability in Fortinet Fortisiem An information exposure vulnerability in the external authentication profile form of FortiSIEM 5.2.2 and earlier may allow an authenticated attacker to retrieve the external authentication password via the HTML source code. | 4.0 |
2020-01-06 | CVE-2019-5990 | Insufficiently Protected Credentials vulnerability in Anglers-Net CGI An-Anlyzer 20190624 Access analysis CGI An-Analyzer released in 2019 June 24 and earlier allow remote attackers to obtain a login password via HTTP referer. | 5.0 |
2020-01-03 | CVE-2019-19310 | Insufficiently Protected Credentials vulnerability in Gitlab GitLab Enterprise Edition (EE) 9.0 and later through 12.5 allows Information Disclosure. | 4.0 |
2020-01-03 | CVE-2020-1871 | Insufficiently Protected Credentials vulnerability in Huawei Usg9500 Firmware USG9500 with software of V500R001C30SPC100; V500R001C30SPC200; V500R001C30SPC600; V500R001C60SPC500; V500R005C00SPC100; V500R005C00SPC200 have an improper credentials management vulnerability. | 6.4 |
2020-01-02 | CVE-2013-3620 | Insufficiently Protected Credentials vulnerability in multiple products Hardcoded WSMan credentials in Intelligent Platform Management Interface (IPMI) with firmware for Supermicro X9 generation motherboards before 3.15 (SMT_X9_315) and firmware for Supermicro X8 generation motherboards before SMT X8 312. | 5.0 |
2020-01-02 | CVE-2019-10205 | Insufficiently Protected Credentials vulnerability in Redhat Quay 3.0.0 A flaw was found in the way Red Hat Quay stores robot account tokens in plain text. | 6.3 |
2019-12-30 | CVE-2019-4335 | Insufficiently Protected Credentials vulnerability in IBM Watson Studio Local 1.2.3 IBM Watson Studio Local 1.2.3 stores key files in the user's home directory which could be obtained by another local user. | 2.1 |