Vulnerabilities > Missing Encryption of Sensitive Data

DATE CVE VULNERABILITY TITLE RISK
2023-08-31 CVE-2023-33833 Missing Encryption of Sensitive Data vulnerability in IBM Security Verify Information Queue 10.0.4/10.0.5
IBM Security Verify Information Queue 10.0.4 and 10.0.5 stores sensitive information in plain clear text which can be read by a local user.
local
low complexity
ibm CWE-311
3.3
2023-08-24 CVE-2023-4420 Missing Encryption of Sensitive Data vulnerability in Sick Lms500 Firmware, Lms511 Firmware and Lms531 Firmware
A remote unprivileged attacker can intercept the communication via e.g.
network
high complexity
sick CWE-311
7.4
2023-08-17 CVE-2023-40251 Missing Encryption of Sensitive Data vulnerability in Genians Genian NAC and Genian Ztna
Missing Encryption of Sensitive Data vulnerability in Genians Genian NAC V4.0, Genians Genian NAC V5.0, Genians Genian NAC Suite V5.0, Genians Genian ZTNA allows Man in the Middle Attack.This issue affects Genian NAC V4.0: from V4.0.0 through V4.0.155; Genian NAC V5.0: from V5.0.0 through V5.0.42 (Revision 117460); Genian NAC Suite V5.0: from V5.0.0 through V5.0.54; Genian ZTNA: from V6.0.0 through V6.0.15.
network
high complexity
genians CWE-311
5.9
2023-08-16 CVE-2023-4384 Missing Encryption of Sensitive Data vulnerability in Maximatech Portal Executivo 21.9.1.140
A vulnerability has been found in MaximaTech Portal Executivo 21.9.1.140 and classified as problematic.
network
high complexity
maximatech CWE-311
5.9
2023-08-15 CVE-2023-39841 Missing Encryption of Sensitive Data vulnerability in Etekcity 3-In-1 Smart Door Lock Firmware 1.0
Missing encryption in the RFID tag of Etekcity 3-in-1 Smart Door Lock v1.0 allows attackers to create a cloned tag via brief physical proximity to the original device.
low complexity
etekcity CWE-311
4.6
2023-08-15 CVE-2023-39842 Missing Encryption of Sensitive Data vulnerability in Mydigoo Dg-Hamb Smart Home Security System Firmware 1.0
Missing encryption in the RFID tag of Digoo DG-HAMB Smart Home Security System v1.0 allows attackers to create a cloned tag via brief physical proximity to the original device.
low complexity
mydigoo CWE-311
2.4
2023-08-15 CVE-2023-39843 Missing Encryption of Sensitive Data vulnerability in Sulimet 5-In-1 Smart Door Lock Firmware 1.0
Missing encryption in the RFID tag of Suleve 5-in-1 Smart Door Lock v1.0 allows attackers to create a cloned tag via brief physical proximity to the original device.
low complexity
sulimet CWE-311
2.4
2023-08-10 CVE-2023-39954 Missing Encryption of Sensitive Data vulnerability in Nextcloud User Oidc
user_oidc provides the OIDC connect user backend for Nextcloud, an open-source cloud platform.
network
low complexity
nextcloud CWE-311
8.1
2023-08-09 CVE-2023-37858 Missing Encryption of Sensitive Data vulnerability in Phoenixcontact products
In PHOENIX CONTACTs WP 6xxx series web panels in versions prior to 4.0.10 an authenticated, remote attacker with admin privileges is able to read hardcoded cryptographic keys allowing to decrypt an encrypted web application login password.
network
low complexity
phoenixcontact CWE-311
4.9
2023-08-04 CVE-2023-38699 Missing Encryption of Sensitive Data vulnerability in Mindsdb
MindsDB's AI Virtual Database allows developers to connect any AI/ML model to any datasource.
network
low complexity
mindsdb CWE-311
6.5