Vulnerabilities > Missing Encryption of Sensitive Data
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-12-19 | CVE-2017-17763 | Missing Encryption of Sensitive Data vulnerability in Liveqos Superbeam SuperBeam through 4.1.3, when using the LAN or WiFi Direct Share feature, does not use HTTPS or any integrity-protection mechanism for file transfer, which makes it easier for remote attackers to send crafted files, as demonstrated by APK injection. | 7.5 |
| 2017-12-01 | CVE-2017-14953 | Missing Encryption of Sensitive Data vulnerability in Hikvision Ds-2Cd2432F-Iw Firmware 5.3.0/5.4.0 HikVision Wi-Fi IP cameras, when used in a wired configuration, allow physically proximate attackers to trigger association with an arbitrary access point by leveraging a default SSID with no WiFi encryption or authentication. | 6.5 |
| 2017-11-22 | CVE-2017-8168 | Missing Encryption of Sensitive Data vulnerability in Huawei Fusionsphere Openstack V100R006C00Spc102(Nfv)/V100R006C10 FusionSphere OpenStack with software V100R006C00SPC102(NFV) and V100R006C10 have an information leak vulnerability. | 4.3 |
| 2017-10-27 | CVE-2017-15581 | Missing Encryption of Sensitive Data vulnerability in Writediary Diary With Lock 4.72 In the "Diary with lock" (aka WriteDiary) application 4.72 for Android, neither HTTPS nor other encryption is used for transmitting data, despite the documentation that the product is intended for "a personal journal of ... | 7.5 |
| 2017-10-19 | CVE-2017-15609 | Missing Encryption of Sensitive Data vulnerability in Octopus Deploy Octopus before 3.17.7 allows attackers to obtain sensitive cleartext information by reading a variable JSON file in certain situations involving Offline Drop Targets. | 7.5 |
| 2017-08-25 | CVE-2017-12817 | Missing Encryption of Sensitive Data vulnerability in Kaspersky Internet Security 11.12.4.1622 In Kaspersky Internet Security for Android 11.12.4.1622, some of the application trace files were not encrypted. | 7.5 |
| 2017-08-07 | CVE-2017-9632 | Missing Encryption of Sensitive Data vulnerability in Pdqinc products A Missing Encryption of Sensitive Data issue was discovered in PDQ Manufacturing LaserWash G5 and G5 S Series all versions, LaserWash M5, all versions, LaserWash 360 and 360 Plus, all versions, LaserWash AutoXpress and AutoExpress Plus, all versions, LaserJet, all versions, ProTouch Tandem, all versions, ProTouch ICON, all versions, and ProTouch AutoGloss, all versions. | 9.8 |
| 2017-08-05 | CVE-2017-9854 | Missing Encryption of Sensitive Data vulnerability in SMA products An issue was discovered in SMA Solar Technology products. | 9.8 |
| 2017-07-11 | CVE-2017-7729 | Missing Encryption of Sensitive Data vulnerability in Ismartalarm Cubeone Firmware On iSmartAlarm cube devices, there is Incorrect Access Control because a "new key" is transmitted in cleartext. | 7.5 |
| 2017-07-07 | CVE-2017-7406 | Missing Encryption of Sensitive Data vulnerability in Dlink Dir-615 20.12Ptb01 The D-Link DIR-615 device before v20.12PTb04 doesn't use SSL for any of the authenticated pages. | 9.8 |