Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-311

CWE-311

High likelihood

Missing Encryption of Sensitive Data

Parent: CWE-693 - Protection Mechanism Failure

The product does not encrypt sensitive or critical information before storage or transmission.

508 vulnerabilities with CWE-311

CVE-2019-4616 LOW

IBM Cloud Automation Manager <3.2.1.0 - Open Redirect

CVE-2019-19739 HIGH

MFScripts YetiShare 3.5.2-4.5.3 - Missing Encryption of Sensitive Data in Session Cookies

CVE-2019-3431 CRITICAL

ZTE ZXCLOUD GoldenData VAP <= zxivs-vap-portal-xzgav4.01.01.02 - Credential Exposure via Unencrypted Transmission

CVE-2019-18833 MEDIUM

Barco ClickShare Button R9861500D01 <1.9.0 - Info Disclosure

CVE-2019-2231 MEDIUM

Android 9-10 - Local Information Disclosure via Unencrypted Master Key

CVE-2019-19464 MEDIUM

CBC Gem <9.24.1-9.26.0 - Info Disclosure

CVE-2019-4214 LOW

IBM SmartCloud Analytics Log Analysis 1.3.1-1.3.5 - Sensitive Information Exposure via Missing Secure Attribute

CVE-2019-15704 MEDIUM

FortiClient for Mac >=6.0.0 <6.0.7 - Sensitive Information Exposure via Console Log

CVE-2019-18980 HIGH

Signify Philips Taolight Smart Wi-Fi Wiz Connected LED Bulb - Info ...

CVE-2019-16210 MEDIUM

Brocade SANnav <2.0 - Info Disclosure

CVE-2019-16206 MEDIUM

Brocade SANnav <2.0 - Info Disclosure

CVE-2019-18800 HIGH

Viber < 11.7.0.5 - Cleartext Transmission of Sensitive Information via TCP Port 4244

CVE-2019-10084 HIGH

Apache Impala 2.7.0-3.2.0 - Auth Bypass

CVE-2019-11664 MEDIUM

Micro Focus Service Manager <9.63 - Info Disclosure

CVE-2019-11663 MEDIUM

Micro Focus Service Manager <9.62 - Info Disclosure

CVE-2019-4171 LOW

IBM Cognos Controller 10.3.0, 10.3.1, 10.4.0, 10.4.1 - Missing Encryption of Sensitive Data in Session Cookies

CVE-2019-9681 MEDIUM

Dahua IPC-HDW/HFW/HDBW Series Firmware < 2019-08-18 - Unencrypted Sensitive Data Exposure in Online Upgrade Information

CVE-2019-13922 LOW

SINEMA Remote Connect Server < V2.0 SP1 - Info Disclosure

CVE-2019-13419 HIGH

Search Guard < 23.1 - Exposure of Sensitive Information via Aggregation Clear Text Leak

CVE-2019-13418 HIGH

Search Guard < 24.0 - Improper Validation of Array Index

CVE-2019-5448 HIGH

Yarn < 1.17.3 - Cleartext Transmission of Sensitive Information via HTTP URLs in Lockfile

CVE-2019-12924 CRITICAL

MailEnable 6.0-<6.90 - Unauthenticated XML External Entity Injection

CVE-2019-10103 HIGH

Kotlin < 1.3.30 - Missing Encryption of Sensitive Data via Gradle Artifact Resolution

CVE-2019-6169 HIGH

Lenovo Service Bridge < 4.1.0.1 - Unencrypted Sensitive Data Download via FTP

CVE-2019-0307 LOW

SAP Solution Manager 7.2 - Missing Encryption of Sensitive Data in Diagnostics Agent

Previous Page 10 of 21 Next

Details

Vulnerabilities 508

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy