Vulnerabilities > Missing Encryption of Sensitive Data
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-09-29 | CVE-2020-15346 | Missing Encryption of Sensitive Data vulnerability in Zyxel Cloudcnm Secumanager 3.1.0/3.1.1 Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 has a /live/GLOBALS API with the CLOUDCNM key. | 5.3 |
| 2022-09-21 | CVE-2022-3250 | Missing Encryption of Sensitive Data vulnerability in Ikus-Soft Rdiffweb Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository ikus060/rdiffweb prior to 2.4.6. | 5.3 |
| 2022-09-21 | CVE-2022-3251 | Missing Encryption of Sensitive Data vulnerability in Ikus-Soft Minarca Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository ikus060/minarca prior to 4.2.2. | 5.3 |
| 2022-09-13 | CVE-2022-3174 | Missing Encryption of Sensitive Data vulnerability in Ikus-Soft Rdiffweb Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository ikus060/rdiffweb prior to 2.4.2. | 7.5 |
| 2022-08-16 | CVE-2022-38194 | Missing Encryption of Sensitive Data vulnerability in Esri Portal for Arcgis 10.8.1 In Esri Portal for ArcGIS versions 10.8.1, a system property is not properly encrypted. | 5.5 |
| 2022-08-01 | CVE-2022-34307 | Missing Encryption of Sensitive Data vulnerability in IBM Cics TX 11.1 IBM CICS TX 11.1 does not set the secure attribute on authorization tokens or session cookies. | 4.3 |
| 2022-07-07 | CVE-2015-3207 | Missing Encryption of Sensitive Data vulnerability in Openshift Origin 3.0.0 In Openshift Origin 3 the cookies being set in console have no 'secure', 'HttpOnly' attributes. | 5.3 |
| 2022-06-29 | CVE-2021-40642 | Missing Encryption of Sensitive Data vulnerability in Textpattern Textpattern CMS v4.8.7 and older vulnerability exists through Sensitive Cookie in HTTPS Session Without 'Secure' Attribute via textpattern/lib/txplib_misc.php. | 4.3 |
| 2022-06-14 | CVE-2021-40650 | Missing Encryption of Sensitive Data vulnerability in Softwareag Connx 6.2.0.1269 In Connx Version 6.2.0.1269 (20210623), a cookie can be issued by the application and not have the secure flag set. | 6.5 |
| 2022-05-25 | CVE-2021-27779 | Missing Encryption of Sensitive Data vulnerability in Hcltech Versionvault Express 2.0.1 VersionVault Express exposes sensitive information that an attacker can use to impersonate the server or eavesdrop on communications with the server. | 9.1 |