Vulnerabilities > Missing Encryption of Sensitive Data
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-07-13 | CVE-2023-31822 | Missing Encryption of Sensitive Data vulnerability in Entetsu Store 13.4.1 An issue found in Entetsu Store v.13.4.1 allows a remote attacker to gain access to sensitive information via the channel access token in the miniapp Entetsu Store function. | 7.5 |
| 2023-07-13 | CVE-2023-31825 | Missing Encryption of Sensitive Data vulnerability in Inageya 13.4.1 An issue found in Inageya v.13.4.1 allows a remote attacker to gain access to sensitive information via the channel access token in the miniapp Inageya function. | 7.5 |
| 2023-07-12 | CVE-2023-37943 | Missing Encryption of Sensitive Data vulnerability in Jenkins Active Directory Jenkins Active Directory Plugin 2.30 and earlier ignores the "Require TLS" and "StartTls" options and always performs the connection test to Active directory unencrypted, allowing attackers able to capture network traffic between the Jenkins controller and Active Directory servers to obtain Active Directory credentials. | 5.9 |
| 2023-07-07 | CVE-2023-37192 | Missing Encryption of Sensitive Data vulnerability in Bitcoin Core 22.0 Memory management and protection issues in Bitcoin Core v22 allows attackers to modify the stored sending address within the app's memory, potentially allowing them to redirect Bitcoin transactions to wallets of their own choosing. | 7.5 |
| 2023-06-07 | CVE-2023-33849 | Missing Encryption of Sensitive Data vulnerability in IBM Cics TX and Txseries for Multiplatforms IBM TXSeries for Multiplatforms 8.1, 8.2, 9.1, CICS TX Standard, 11.1, CICS TX Advanced 10.1, and 11.1 could transmit sensitive information in query parameters that could be intercepted using man in the middle techniques. | 3.7 |
| 2023-05-31 | CVE-2023-34258 | Missing Encryption of Sensitive Data vulnerability in BMC Patrol 9.13.10.01 An issue was discovered in BMC Patrol before 22.1.00. | 7.5 |
| 2023-05-16 | CVE-2023-32982 | Missing Encryption of Sensitive Data vulnerability in Jenkins Ansible Jenkins Ansible Plugin 204.v8191fd551eb_f and earlier stores extra variables unencrypted in job config.xml files on the Jenkins controller where they can be viewed by users with Item/Extended Read permission or access to the Jenkins controller file system. | 4.3 |
| 2023-05-08 | CVE-2023-21404 | Missing Encryption of Sensitive Data vulnerability in Axis OS AXIS OS 11.0.X - 11.3.x use a static RSA key in legacy LUA-components to protect Axis-specific source code. | 5.3 |
| 2023-05-07 | CVE-2023-32290 | Missing Encryption of Sensitive Data vulnerability in Vk.Company Mymail 14.30 The myMail app through 14.30 for iOS sends cleartext credentials in a situation where STARTTLS is expected by a server. | 7.5 |
| 2023-04-13 | CVE-2023-22948 | Missing Encryption of Sensitive Data vulnerability in Tigergraph An issue was discovered in TigerGraph Enterprise Free Edition 3.x. | 4.9 |