Vulnerabilities > Missing Encryption of Sensitive Data
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-05-01 | CVE-2017-14012 | Missing Encryption of Sensitive Data vulnerability in Bostonscientific Zoom Latitude PRM 3120 Firmware Boston Scientific ZOOM LATITUDE PRM Model 3120 does not encrypt PHI at rest. | 4.6 |
| 2018-04-23 | CVE-2018-4847 | Missing Encryption of Sensitive Data vulnerability in Siemens Simatic Wincc OA Operator A vulnerability has been identified in SIMATIC WinCC OA Operator iOS App (All versions < V1.4). | 4.6 |
| 2018-03-28 | CVE-2018-7498 | Missing Encryption of Sensitive Data vulnerability in Philips Alice 6 Firmware R8.0.2 In Philips Alice 6 System version R8.0.2 or prior, the lack of proper data encryption passes up the guarantees of confidentiality, integrity, and accountability that properly implemented encryption conveys. | 9.8 |
| 2018-02-22 | CVE-2017-5251 | Missing Encryption of Sensitive Data vulnerability in Insteon HUB Firmware In version 1012 and prior of Insteon's Insteon Hub, the radio transmissions used for communication between the hub and connected devices are not encrypted. | 8.1 |
| 2018-02-07 | CVE-2017-15397 | Missing Encryption of Sensitive Data vulnerability in Google Chrome OS Inappropriate implementation in ChromeVox in Google Chrome OS prior to 62.0.3202.74 allowed a remote attacker in a privileged network position to observe or tamper with certain cleartext HTTP requests by leveraging that position. | 7.4 |
| 2018-02-02 | CVE-2018-5261 | Missing Encryption of Sensitive Data vulnerability in Flexense Diskboss An issue was discovered in Flexense DiskBoss 8.8.16 and earlier. | 8.1 |
| 2017-12-19 | CVE-2017-17763 | Missing Encryption of Sensitive Data vulnerability in Liveqos Superbeam SuperBeam through 4.1.3, when using the LAN or WiFi Direct Share feature, does not use HTTPS or any integrity-protection mechanism for file transfer, which makes it easier for remote attackers to send crafted files, as demonstrated by APK injection. | 7.5 |
| 2017-12-01 | CVE-2017-14953 | Missing Encryption of Sensitive Data vulnerability in Hikvision Ds-2Cd2432F-Iw Firmware 5.3.0/5.4.0 HikVision Wi-Fi IP cameras, when used in a wired configuration, allow physically proximate attackers to trigger association with an arbitrary access point by leveraging a default SSID with no WiFi encryption or authentication. | 6.5 |
| 2017-11-22 | CVE-2017-8168 | Missing Encryption of Sensitive Data vulnerability in Huawei Fusionsphere Openstack V100R006C00Spc102(Nfv)/V100R006C10 FusionSphere OpenStack with software V100R006C00SPC102(NFV) and V100R006C10 have an information leak vulnerability. | 4.3 |
| 2017-10-27 | CVE-2017-15581 | Missing Encryption of Sensitive Data vulnerability in Writediary Diary With Lock 4.72 In the "Diary with lock" (aka WriteDiary) application 4.72 for Android, neither HTTPS nor other encryption is used for transmitting data, despite the documentation that the product is intended for "a personal journal of ... | 7.5 |