Vulnerabilities > Insufficiently Protected Credentials
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-08-06 | CVE-2019-14709 | Insufficiently Protected Credentials vulnerability in Microdigital products A cleartext password storage issue was discovered on MicroDigital N-series cameras with firmware through 6400.0.8.5. | 9.8 |
| 2019-07-31 | CVE-2019-10366 | Insufficiently Protected Credentials vulnerability in Jenkins Skytap Cloud CI Jenkins Skytap Cloud CI Plugin 2.06 and earlier stored credentials unencrypted in job config.xml files on the Jenkins master where they could be viewed by users with Extended Read permission, or access to the master file system. | 6.5 |
| 2019-07-31 | CVE-2019-10361 | Insufficiently Protected Credentials vulnerability in Jenkins M2Release Jenkins Maven Release Plugin 0.14.0 and earlier stored credentials unencrypted on the Jenkins master where they could be viewed by users with access to the master file system. | 5.5 |
| 2019-07-31 | CVE-2019-10345 | Insufficiently Protected Credentials vulnerability in Jenkins Configuration AS Code Jenkins Configuration as Code Plugin 1.20 and earlier did not treat the proxy password as a secret to be masked when logging or encrypted for export. | 5.5 |
| 2019-07-29 | CVE-2019-1020009 | Insufficiently Protected Credentials vulnerability in Kolide Fleet 2.0.2/2.1.0/2.1.1 Fleet before 2.1.2 allows exposure of SMTP credentials. | 7.5 |
| 2019-07-19 | CVE-2019-1010241 | Insufficiently Protected Credentials vulnerability in Jenkins Credentials Binding 1.17 Jenkins Credentials Binding Plugin Jenkins 1.17 is affected by: CWE-257: Storing Passwords in a Recoverable Format. | 6.5 |
| 2019-07-17 | CVE-2019-8932 | Insufficiently Protected Credentials vulnerability in Rdbrck Shift Redbrick Shift through 3.4.3 allows an attacker to extract authentication tokens of services (such as Gmail, Outlook, etc.) used in the application. | 7.5 |
| 2019-07-15 | CVE-2019-1010308 | Insufficiently Protected Credentials vulnerability in Aquaverde Aquarius CMS Aquaverde GmbH Aquarius CMS prior to version 4.1.1 is affected by: Incorrect Access Control. | 9.8 |
| 2019-07-11 | CVE-2019-9657 | Insufficiently Protected Credentials vulnerability in Alarm Adc-V522Ir Firmware 0100B9 Alarm.com ADC-V522IR 0100b9 devices have Incorrect Access Control, a different issue than CVE-2018-19588. | 7.8 |
| 2019-07-11 | CVE-2019-10347 | Insufficiently Protected Credentials vulnerability in Jenkins Mashup Portlets Jenkins Mashup Portlets Plugin stored credentials unencrypted on the Jenkins master where they can be viewed by users with access to the master file system. | 8.8 |