Vulnerabilities > Missing Encryption of Sensitive Data

DATE CVE VULNERABILITY TITLE RISK
2022-01-12 CVE-2022-23116 Missing Encryption of Sensitive Data vulnerability in Jenkins Conjur Secrets
Jenkins Conjur Secrets Plugin 1.0.9 and earlier implements functionality that allows attackers able to control agent processes to decrypt secrets stored in Jenkins obtained through another method.
network
low complexity
jenkins CWE-311
5.0
2022-01-10 CVE-2020-9057 Missing Encryption of Sensitive Data vulnerability in multiple products
Z-Wave devices based on Silicon Labs 100, 200, and 300 series chipsets do not support encryption, allowing an attacker within radio range to take control of or cause a denial of service to a vulnerable device.
low complexity
linear silabs CWE-311
8.3
2022-01-10 CVE-2020-9058 Missing Encryption of Sensitive Data vulnerability in multiple products
Z-Wave devices based on Silicon Labs 500 series chipsets using CRC-16 encapsulation, including but likely not limited to the Linear LB60Z-1 version 3.5, Dome DM501 version 4.26, and Jasco ZW4201 version 4.05, do not implement encryption or replay protection.
low complexity
silabs dome jasco linear CWE-311
4.8
2022-01-04 CVE-2021-40148 Missing Encryption of Sensitive Data vulnerability in Mediatek products
In Modem EMM, there is a possible information disclosure due to a missing data encryption.
network
low complexity
mediatek CWE-311
5.0
2021-12-10 CVE-2021-37189 Missing Encryption of Sensitive Data vulnerability in Digi products
An issue was discovered on Digi TransPort Gateway devices through 5.2.13.4.
network
low complexity
digi CWE-311
5.0
2021-12-09 CVE-2021-36189 Missing Encryption of Sensitive Data vulnerability in Fortinet Forticlient Enterprise Management Server
A missing encryption of sensitive data in Fortinet FortiClientEMS version 7.0.1 and below, version 6.4.4 and below allows attacker to information disclosure via inspecting browser decrypted data
network
low complexity
fortinet CWE-311
4.0
2021-12-08 CVE-2021-37050 Missing Encryption of Sensitive Data vulnerability in Huawei Emui, Harmonyos and Magic UI
There is a Missing sensitive data encryption vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may affect service confidentiality.
network
low complexity
huawei CWE-311
5.0
2021-12-02 CVE-2021-44518 Missing Encryption of Sensitive Data vulnerability in Digipas Egeetouch 3RD Generation Travel Padlock
An issue was discovered in the eGeeTouch 3rd Generation Travel Padlock application for Android.
2.9
2021-12-01 CVE-2021-44480 Missing Encryption of Sensitive Data vulnerability in Wokkalokka Wokka Watch Q50 Firmware
Wokka Lokka Q50 devices through 2021-11-30 allow remote attackers (who know the SIM phone number and password) to listen to a device's surroundings via a callback in an SMS command, as demonstrated by the 123456 and 523681 default passwords.
network
wokkalokka CWE-311
critical
9.3
2021-11-09 CVE-2021-40366 Missing Encryption of Sensitive Data vulnerability in Siemens Climatix Pol909 Firmware 11.32
A vulnerability has been identified in Climatix POL909 (AWM module) (All versions < V11.34).
network
siemens CWE-311
5.8