Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-256

CWE-256

High likelihood

Plaintext Storage of a Password

Parent: CWE-522 - Insufficiently Protected Credentials

The product stores a password in plaintext within resources such as memory or files.

204 vulnerabilities with CWE-256

CVE-2023-0457 HIGH

Mitsubishi Electric Corporation MELSEC - Info Disclosure

CVE-2023-22389 MEDIUM

Snap One Wattbox WB-300-IP-3 <WB10.9a17 - Info Disclosure

CVE-2022-0555 HIGH

Subiquity < 22.02.1 - Plaintext Storage of a Password

CVE-2022-47561 HIGH

Ormazabal ekorCCP and ekorrCI Firmware - Unauthenticated Credential Exposure via admin.xml

CVE-2022-3261 MEDIUM

Red Hat OpenStack Platform - Cleartext Transmission of Sensitive Information in /var/log/messages

CVE-2022-4308 MEDIUM

Secomea GateManager - Info Disclosure

CVE-2022-22458 MEDIUM

IBM Security Verify Governance, Identity Manager 10.0.1 - Info Disc...

CVE-2022-41732 MEDIUM

IBM Maximo Mobile <8.9 - Info Disclosure

CVE-2022-43958 HIGH

QMS Automotive <V12.39 - Info Disclosure

CVE-2022-3644 MEDIUM

pulp_ansible - Insufficiently Protected Credentials via Plaintext Token Storage

CVE-2022-43426 MEDIUM

Jenkins S3 Explorer Plugin <1.0.8 - Info Disclosure

CVE-2022-3287 MEDIUM

fwupd < 1.8.5 - Unauthenticated Sensitive Information Exposure via Redfish Plugin Configuration

CVE-2022-36308 CRITICAL

Airspan AirVelocity <15.18.00.2511 - Info Disclosure

CVE-2022-33928 MEDIUM

Dell Wyse Management Suite <3.6.1 - Info Disclosure

CVE-2022-1794 MEDIUM

CODESYS OPC DA Server <V3.5.18.20 - Info Disclosure

CVE-2022-27548 MEDIUM

HCL Launch - Insufficiently Protected Credentials

CVE-2022-31044 HIGH

Rundeck 4.2.0-4.2.1 - Insufficiently Protected Credentials via Key Storage Converter Plugin

CVE-2022-29085 MEDIUM

Dell Unity <5.2.0.0.5.173 - Info Disclosure

CVE-2022-22557 HIGH

PowerStore <2.0.1.x - Info Disclosure

CVE-2022-22554 HIGH

Dell EMC System Update <1.9.2 - Info Disclosure

CVE-2021-47961 HIGH

Synology SSL VPN Client <1.4.5-0684 - Info Disclosure

CVE-2021-32978 HIGH

Automation Direct CLICK PLC CPU <v3.00 - Info Disclosure

CVE-2021-43590 MEDIUM

Dell EMC Enterprise Storage Analytics for vRealize Operations <6.2....

CVE-2021-23207 MEDIUM

Fresenius Kabi Vigilant MasterMed <2.0.1.3 - Info Disclosure

CVE-2021-36317 MEDIUM

Dell EMC Avamar Server 19.4 - Info Disclosure

Previous Page 7 of 9 Next

Details

Vulnerabilities 204

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy