Vulnerabilities > Missing Encryption of Sensitive Data

DATE CVE VULNERABILITY TITLE RISK
2024-02-05 CVE-2024-24768 Missing Encryption of Sensitive Data vulnerability in Fit2Cloud 1Panel 1.9.5
1Panel is an open source Linux server operation and maintenance management panel.
network
low complexity
fit2cloud CWE-311
7.5
2024-01-11 CVE-2023-50126 Missing Encryption of Sensitive Data vulnerability in Hozard Alarm System 1.0
Missing encryption in the RFID tags of the Hozard alarm system (Alarmsysteem) v1.0 allow attackers to create a cloned tag via brief physical proximity to one of the original tags, which results in an attacker being able to bring the alarm system to a disarmed state.
low complexity
hozard CWE-311
6.5
2024-01-11 CVE-2023-50129 Missing Encryption of Sensitive Data vulnerability in Flient Smart Lock Advanced Firmware 1.0
Missing encryption in the NFC tags of the Flient Smart Door Lock v1.0 allows attackers to create a cloned tag via brief physical proximity to the original tags, which results in an attacker gaining access to the perimeter.
low complexity
flient CWE-311
6.5
2024-01-11 CVE-2023-38267 Missing Encryption of Sensitive Data vulnerability in IBM products
IBM Security Access Manager Appliance (IBM Security Verify Access Appliance 10.0.0.0 through 10.0.6.1 and IBM Security Verify Access Docker 10.0.6.1) could allow a local user to obtain sensitive configuration information.
local
low complexity
ibm CWE-311
5.5
2024-01-02 CVE-2023-6339 Missing Encryption of Sensitive Data vulnerability in Google Nest Wifi PRO Firmware
Google Nest WiFi Pro root code-execution & user-data compromise
network
low complexity
google CWE-311
critical
9.8
2024-01-02 CVE-2023-33037 Missing Encryption of Sensitive Data vulnerability in Qualcomm products
Cryptographic issue in Automotive while unwrapping the key secs2d and verifying with RPMB data.
local
low complexity
qualcomm CWE-311
5.5
2023-12-12 CVE-2023-46219 Missing Encryption of Sensitive Data vulnerability in multiple products
When saving HSTS data to an excessively long file name, curl could end up removing all contents, making subsequent requests using that file unaware of the HSTS status they should otherwise use.
network
low complexity
haxx fedoraproject CWE-311
5.3
2023-12-01 CVE-2023-42019 Missing Encryption of Sensitive Data vulnerability in IBM Infosphere Information Server 11.7.1
IBM InfoSphere Information Server 11.7 could allow a remote attacker to cause a denial of service due to improper input validation.
network
high complexity
ibm CWE-311
5.9
2023-11-08 CVE-2023-44098 Missing Encryption of Sensitive Data vulnerability in Huawei Emui and Harmonyos
Vulnerability of missing encryption in the card management module.
network
low complexity
huawei CWE-311
7.5
2023-11-01 CVE-2023-33228 Missing Encryption of Sensitive Data vulnerability in Solarwinds Network Configuration Manager
The SolarWinds Network Configuration Manager was susceptible to the Exposure of Sensitive Information Vulnerability.
network
low complexity
solarwinds CWE-311
4.9