Vulnerabilities > Insufficiently Protected Credentials
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-06-26 | CVE-2018-1000608 | Insufficiently Protected Credentials vulnerability in Jenkins Z/Os Connector A exposure of sensitive information vulnerability exists in Jenkins z/OS Connector Plugin 1.2.6.1 and earlier in SCLMSCM.java that allows an attacker with local file system access or control of a Jenkins administrator's web browser (e.g. | 7.2 |
| 2018-06-12 | CVE-2018-12260 | Insufficiently Protected Credentials vulnerability in Apollotechnologiesinc Momentum Axel 720P Firmware 5.1.8 An issue was discovered on Momentum Axel 720P 5.1.8 devices. | 6.7 |
| 2018-06-08 | CVE-2018-4190 | Insufficiently Protected Credentials vulnerability in multiple products An issue was discovered in certain Apple products. | 8.8 |
| 2018-06-07 | CVE-2018-0335 | Insufficiently Protected Credentials vulnerability in Cisco Prime Collaboration 12.2 A vulnerability in the web portal authentication process of Cisco Prime Collaboration Provisioning could allow an unauthenticated, local attacker to view sensitive data. | 7.8 |
| 2018-06-06 | CVE-2018-7510 | Insufficiently Protected Credentials vulnerability in Beaconmedaes Scroll Medical AIR Systems Firmware In the web application in BeaconMedaes TotalAlert Scroll Medical Air Systems running software versions prior to 4107600010.23, passwords are presented in plaintext in a file that is accessible without authentication. | 9.8 |
| 2018-06-06 | CVE-2017-7933 | Insufficiently Protected Credentials vulnerability in ABB IP Gateway Firmware 3.39 In ABB IP GATEWAY 3.39 and prior, some configuration files contain passwords stored in plain-text, which may allow an attacker to gain unauthorized access. | 9.8 |
| 2018-05-29 | CVE-2018-11544 | Insufficiently Protected Credentials vulnerability in Theolivetree FTP Server 1.32 The Olive Tree Ftp Server application 1.32 for Android has Insecure Data Storage because a username and password are stored in the /data/data/com.theolivetree.ftpserver/shared_prefs/com.theolivetree.ftpserver_preferences.xml file as the prefUsername and prefUserpass strings. | 9.8 |
| 2018-05-24 | CVE-2018-7518 | Insufficiently Protected Credentials vulnerability in Beaconmedaes Scroll Medical AIR Systems Firmware In TotalAlert Web Application in BeaconMedaes Scroll Medical Air Systems prior to v4107600010.23, an attacker with network access to the integrated web server could retrieve default or user defined credentials stored and transmitted in an insecure manner. | 9.8 |
| 2018-05-23 | CVE-2018-10355 | Insufficiently Protected Credentials vulnerability in Trendmicro Email Encryption Gateway 5.5 An authentication weakness vulnerability in Trend Micro Email Encryption Gateway 5.5 could allow an attacker to recover user passwords on vulnerable installations due to a flaw in the DBCrypto class. | 7.0 |
| 2018-05-18 | CVE-2017-9637 | Insufficiently Protected Credentials vulnerability in Schneider-Electric Ampla Manufacturing Execution System 6.4 Schneider Electric Ampla MES 6.4 provides capability to interact with data from third party databases. | 4.1 |