CVE & Exploit Intelligence Database

CVE-2024-51984 6.8 MEDIUM 1 Writeup EPSS 0.00

An authenticated attacker can reconfigure the target device to use an external service (such as LDAP or FTP) controlled by the attacker. If an existing password is present for an external service, the attacker can force the target device to authenticate to an attacker controlled device using the existing credentials for that external service. In the case of an external LDAP or FTP service, this will disclose the plaintext password for that external service to the attacker.

CWE-522 Jun 25, 2025

CVE-2025-6526 3.1 LOW 1 Writeup EPSS 0.00

A vulnerability, which was classified as problematic, has been found in 70mai M300 up to 20250611. This issue affects some unknown processing of the component HTTP Server. The manipulation leads to insufficiently protected credentials. The attack can only be done within the local network. The complexity of an attack is rather high. The exploitation is known to be difficult. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

CWE-522 Jun 23, 2025

CVE-2025-35941 5.5 MEDIUM EPSS 0.00

A password is exposed locally.

CWE-522 Jun 11, 2025

CVE-2025-30183 7.5 HIGH EPSS 0.00

CyberData 011209 Intercom does not properly store or protect web server admin credentials.

CWE-522 Jun 09, 2025

CVE-2024-47081 5.3 MEDIUM 1 Writeup EPSS 0.00

Requests is a HTTP library. Due to a URL parsing issue, Requests releases prior to 2.32.4 may leak .netrc credentials to third parties for specific maliciously-crafted URLs. Users should upgrade to version 2.32.4 to receive a fix. For older versions of Requests, use of the .netrc file can be disabled with `trust_env=False` on one's Requests Session.

CWE-522 Jun 09, 2025

CVE-2025-33079 6.5 MEDIUM EPSS 0.00

IBM Controller 11.0.0, 11.0.1, and 11.1.0 application could allow an authenticated user to obtain sensitive credentials that may be inadvertently included within the source code.

CWE-522 May 27, 2025

CVE-2025-3480 6.5 MEDIUM EPSS 0.00

MedDream WEB DICOM Viewer Cleartext Transmission of Credentials Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of MedDream WEB DICOM Viewer. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Web Portal. The issue results from the lack of encryption when transmitting credentials. An attacker can leverage this vulnerability to disclose transmitted credentials, leading to further compromise. Was ZDI-CAN-25842.

CWE-319 May 22, 2025

CVE-2025-3079 8.7 HIGH EPSS 0.00

A passback vulnerability which relates to office/small office multifunction printers and laser printers.

CWE-522 May 20, 2025

CVE-2025-3078 8.7 HIGH EPSS 0.00

A passback vulnerability which relates to production printers and office multifunction printers.

CWE-522 May 20, 2025

CVE-2025-4679 6.5 MEDIUM 1 PoC Analysis EPSS 0.00

A vulnerability in Synology Active Backup for Microsoft 365 allows remote authenticated attackers to obtain sensitive information via unspecified vectors.

CWE-522 May 16, 2025

CVE-2025-33093 7.5 HIGH EPSS 0.00

IBM Sterling Partner Engagement Manager 6.1.0, 6.2.0, 6.2.2 JWT secret is stored in public Helm Charts and is not stored as a Kubernetes secret.

CWE-260 May 07, 2025

CVE-2025-46820 7.1 HIGH 1 Writeup EPSS 0.00

phpgt/Dom provides access to modern DOM APIs. Versions of phpgt/Dom prior to 4.1.8 expose the GITHUB_TOKEN in the Dom workflow run artifact. The ci.yml workflow file uses actions/upload-artifact@v4 to upload the build artifact. This artifact is a zip of the current directory, which includes the automatically generated .git/config file containing the run's GITHUB_TOKEN. Seeing as the artifact can be downloaded prior to the end of the workflow, there is a few seconds where an attacker can extract the token from the artifact and use it with the GitHub API to push malicious code or rewrite release commits in your repository. Any downstream user of the repository may be affected, but the token should only be valid for the duration of the workflow run, limiting the time during which exploitation could occur. Version 4.1.8 fixes the issue.

CWE-522 May 06, 2025

CVE-2025-2772 6.5 MEDIUM EPSS 0.00

BEC Technologies Multiple Routers Insufficiently Protected Credentials Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of BEC Technologies routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within /cgi-bin/tools_usermanage.asp. The issue results from transmitting a list of users and their credentials to be handled on the client side. An attacker can leverage this vulnerability to disclose transported credentials, leading to further compromise. Was ZDI-CAN-25895.

CWE-522 Apr 23, 2025

CVE-2025-32963 1 Writeup EPSS 0.00

MinIO Operator STS is a native IAM Authentication for Kubernetes. Prior to version 7.1.0, if no audiences are provided for the `spec.audiences` field, the default will be of the Kubernetes apiserver. Without scoping, it can be replayed to other internal systems, which may unintentionally trust it. This issue has been patched in version 7.1.0.

CWE-522 Apr 22, 2025

CVE-2025-28228 7.5 HIGH 1 PoC 1 Writeup Analysis NUCLEI EPSS 0.06

A credential exposure vulnerability in Electrolink 500W, 1kW, 2kW Medium DAB Transmitter Web v01.09, v01.08, v01.07, and Display v1.4, v1.2 allows unauthorized attackers to access credentials in plaintext.

CWE-522 Apr 18, 2025

CVE-2025-22372 EPSS 0.00

Insufficiently Protected Credentials vulnerability in SicommNet BASEC on SaaS allows Password Recovery. Passwords are either stored in plain text using reversible encryption, allowing an attacker with sufficient privileges to extract plain text passwords easily. This issue affects BASEC: from 14 Dec 2021.

CWE-522 Apr 14, 2025

CVE-2025-27192 2.7 LOW EPSS 0.01

Adobe Commerce versions 2.4.7-p4, 2.4.6-p9, 2.4.5-p11, 2.4.4-p12, 2.4.8-beta2 and earlier are affected by an Insufficiently Protected Credentials vulnerability that could lead to a security feature bypass. A high privileged attacker could exploit this vulnerability to gain unauthorized access to protected resources by obtaining sensitive credential information. Exploitation of this issue does not require user interaction.

CWE-522 Apr 08, 2025

CVE-2025-26628 7.3 HIGH EPSS 0.01

Insufficiently protected credentials in Azure Local Cluster allows an authorized attacker to disclose information locally.

CWE-522 Apr 08, 2025

CVE-2025-2908 EPSS 0.00

The exposure of credentials in the call forwarding configuration module in MeetMe products in versions prior to 2024-09 allows an attacker to gain access to some important assets via configuration files.

CWE-522 Mar 28, 2025

CVE-2025-2311 9.0 CRITICAL EPSS 0.00

Incorrect Use of Privileged APIs, Cleartext Transmission of Sensitive Information, Insufficiently Protected Credentials vulnerability in Sechard Information Technologies SecHard allows Authentication Bypass, Interface Manipulation, Authentication Abuse, Harvesting Information via API Event Monitoring.This issue affects SecHard: before 3.3.0.20220411.

CWE-319 Mar 20, 2025