Vulnerabilities > Insufficiently Protected Credentials
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-06-13 | CVE-2019-0175 | Insufficiently Protected Credentials vulnerability in Intel Open Cloud Integrity Tehnology and Openattestation Insufficient password protection in the attestation database for Open CIT may allow an authenticated user to potentially enable information disclosure via local access. | 4.4 |
| 2019-06-12 | CVE-2019-3947 | Insufficiently Protected Credentials vulnerability in Fujielectric V-Server Fuji Electric V-Server before 6.0.33.0 stores database credentials in project files as plaintext. | 9.8 |
| 2019-06-12 | CVE-2019-6567 | Insufficiently Protected Credentials vulnerability in Siemens products A vulnerability has been identified in SCALANCE X-200 switch family (incl. | 5.5 |
| 2019-06-06 | CVE-2019-6452 | Insufficiently Protected Credentials vulnerability in Kyocera Command Center RX Kyocera Command Center RX TASKalfa4501i and TASKalfa5052ci allows remote attackers to abuse the Test button in the machine address book to obtain a cleartext FTP or SMB password. | 8.8 |
| 2019-06-03 | CVE-2019-11367 | Insufficiently Protected Credentials vulnerability in AUO Solar Data Recorder An issue was discovered in AUO Solar Data Recorder before 1.3.0. | 9.8 |
| 2019-06-03 | CVE-2019-11369 | Insufficiently Protected Credentials vulnerability in Carel Pcoweb Card Firmware A2.1.0/B.2.1.0 An issue was discovered in Carel pCOWeb prior to B1.2.4. | 8.8 |
| 2019-05-31 | CVE-2019-10981 | Insufficiently Protected Credentials vulnerability in Schneider-Electric Citectscada and Scada Expert Vijeo Citect In Vijeo Citect 7.30 and 7.40, and CitectSCADA 7.30 and 7.40, a vulnerability has been identified that may allow an authenticated local user access to Citect user credentials. | 7.8 |
| 2019-05-31 | CVE-2019-10329 | Insufficiently Protected Credentials vulnerability in Eficode Influxdb Jenkins InfluxDB Plugin 1.21 and earlier stored credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system. | 8.8 |
| 2019-05-29 | CVE-2019-12452 | Insufficiently Protected Credentials vulnerability in Traefik types/types.go in Containous Traefik 1.7.x through 1.7.11, when the --api flag is used and the API is publicly reachable and exposed without sufficient access control (which is contrary to the API documentation), allows remote authenticated users to discover password hashes by reading the Basic HTTP Authentication or Digest HTTP Authentication section, or discover a key by reading the ClientTLS section. | 7.5 |
| 2019-05-29 | CVE-2019-4138 | Insufficiently Protected Credentials vulnerability in IBM Spectrum Control IBM Tivoli Storage Productivity Center 5.2.13 through 5.3.0.1 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. | 5.9 |