Vulnerabilities > Storage of Sensitive Data in a Mechanism without Access Control
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-04-08 | CVE-2025-30016 | SAP Financial Consolidation allows an unauthenticated attacker to gain unauthorized access to the Admin account. | 9.8 |
| 2025-02-27 | CVE-2024-9334 | Use of Hard-coded Credentials, Storage of Sensitive Data in a Mechanism without Access Control vulnerability in E-Kent Pallium Vehicle Tracking allows Authentication Bypass.This issue affects Pallium Vehicle Tracking: before 17.10.2024. | 8.2 |
| 2023-09-18 | CVE-2023-41965 | Storage of Sensitive Data in a Mechanism without Access Control vulnerability in Socomec Modulys GP Firmware 01.12.10 Sending some requests in the web application of the vulnerable device allows information to be obtained due to the lack of security in the authentication process. | 7.5 |