Vulnerabilities > Missing Encryption of Sensitive Data
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-07-03 | CVE-2018-4855 | Missing Encryption of Sensitive Data vulnerability in Siemens Siclock Tc100 Firmware and Siclock Tc400 Firmware A vulnerability has been identified in SICLOCK TC100 (All versions) and SICLOCK TC400 (All versions). | 6.5 |
| 2018-06-11 | CVE-2018-5185 | Missing Encryption of Sensitive Data vulnerability in multiple products Plaintext of decrypted emails can leak through by user submitting an embedded form. | 6.5 |
| 2018-06-11 | CVE-2018-5162 | Missing Encryption of Sensitive Data vulnerability in multiple products Plaintext of decrypted emails can leak through the src attribute of remote images, or links. | 7.5 |
| 2018-06-04 | CVE-2016-10663 | Missing Encryption of Sensitive Data vulnerability in Node-Wixtoolset Project Node-Wixtoolset 1.0.0 wixtoolset is a Node module wrapper around the wixtoolset binaries wixtoolset downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. | 8.1 |
| 2018-06-01 | CVE-2016-10597 | Missing Encryption of Sensitive Data vulnerability in Cobalt-Cli Project Cobalt-Cli cobalt-cli downloads resources over HTTP, which leaves it vulnerable to MITM attacks. | 5.9 |
| 2018-05-29 | CVE-2017-16003 | Missing Encryption of Sensitive Data vulnerability in Windows-Build-Tools Project Windows-Build-Tools windows-build-tools is a module for installing C++ Build Tools for Windows using npm. | 8.1 |
| 2018-05-25 | CVE-2018-8864 | Missing Encryption of Sensitive Data vulnerability in Atisystem products In ATI Systems Emergency Mass Notification Systems (HPSS16, HPSS32, MHPSS, and ALERT4000) devices, a missing encryption of sensitive data vulnerability caused by specially crafted malicious radio transmissions may allow an attacker to remotely trigger false alarms. | 3.1 |
| 2018-05-25 | CVE-2018-6674 | Missing Encryption of Sensitive Data vulnerability in Mcafee Virusscan Enterprise 8.8.0 Privilege Escalation vulnerability in Microsoft Windows client (McTray.exe) in McAfee VirusScan Enterprise (VSE) 8.8 prior to Patch 13 allows local users to spawn unrelated processes with elevated privileges via the system administrator granting McTray.exe elevated privileges (by default it runs with the current user's privileges). | 3.9 |
| 2018-05-18 | CVE-2018-8849 | Missing Encryption of Sensitive Data vulnerability in Medtronic N'Vision 8840 Firmware and N'Vision 8870 Firmware Medtronic N'Vision Clinician Programmer 8840 N'Vision Clinician Programmer, all versions, and 8870 N'Vision removable Application Card, all versions does not encrypt PII and PHI while at rest. | 4.6 |
| 2018-05-15 | CVE-2018-10825 | Missing Encryption of Sensitive Data vulnerability in Mimobaby Mimo Baby 2 Firmware Mimo Baby 2 devices do not use authentication or encryption for the Bluetooth Low Energy (BLE) communication from a Turtle to a Lilypad, which allows attackers to inject fake information about the position and temperature of a baby via a replay or spoofing attack. | 5.3 |