Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-311

CWE-311

High likelihood

Missing Encryption of Sensitive Data

Parent: CWE-693 - Protection Mechanism Failure

The product does not encrypt sensitive or critical information before storage or transmission.

508 vulnerabilities with CWE-311

CVE-2018-1937 MEDIUM

IBM Cloud Private 3.1.1 - Info Disclosure

CVE-2018-5482 MEDIUM

NetApp SnapCenter Server <4.1 - Info Disclosure

CVE-2018-1340 HIGH

Apache Guacamole < 1.0.0 - Unauthenticated Session Token Exposure via Insecure Cookie

CVE-2018-10612 CRITICAL

CODESYS Control V3 <3.5.14.0 - Info Disclosure

CVE-2018-5481 HIGH

OnCommand Unified Manager - Info Disclosure

CVE-2018-16879 CRITICAL

Ansible Tower <3.3.3 - DoS, Info Disclosure

CVE-2018-20100 CRITICAL

August Connect - Unencrypted Wi-Fi Credential Exposure via HTTP POST

CVE-2018-20465 HIGH

Craft CMS <= 3.0.34 - Authenticated Server-Side Template Injection via Site Settings URI Format

CVE-2018-18984 MEDIUM

Medtronic CareLink and Encore Programmers - Cleartext Storage of Sensitive Information

CVE-2018-16837 HIGH

Ansible 2.7.0a1-2.7.0 - Sensitive Information Exposure via ssh-keygen Parameter Leak

CVE-2018-17915 CRITICAL

Xiongmai XMeye P2P Cloud Server - Missing Encryption of Sensitive Data

CVE-2018-1683 MEDIUM

IBM WebSphere Application Server Liberty - Info Disclosure

CVE-2018-3826 MEDIUM

Elasticsearch 6.0.0-beta1-6.2.4 - Exposure of Sensitive Information via _snapshot API

CVE-2018-6976 MEDIUM

VMware Workspace ONE < 4.14 - Sensitive Data Exposure via Unencrypted SQLite Database

CVE-2018-6975 MEDIUM

VMware Intelligent Hub < 5.8.1 - Unprotected Sensitive Data Exposure via Missing Encryption

CVE-2018-14608 HIGH

Thomson Reuters UltraTax CS 2017 - Info Disclosure

CVE-2018-14607 HIGH

Thomson Reuters UltraTax CS 2017 - Info Disclosure

CVE-2018-7781 HIGH

Schneider Electric Pelco Sarix Professional 1st Gen < 3.29.69 - Authenticated Sensitive Data Exposure

CVE-2018-4855 MEDIUM

SICLOCK TC100 and TC400 - Unencrypted Password Storage in Client Configuration

CVE-2018-5185 MEDIUM

Thunderbird <52.8 - Info Disclosure

CVE-2018-5162 HIGH

Thunderbird <52.8 - Info Disclosure

CVE-2018-8864 LOW

ATI Systems - Info Disclosure

CVE-2018-6674 MEDIUM

McAfee VirusScan Enterprise < 8.8 Patch 13 - Privilege Escalation via McTray.exe

CVE-2018-8849 MEDIUM

Medtronic N'Vision - Info Disclosure

CVE-2018-10825 MEDIUM

Mimo Baby 2 Firmware - Unauthenticated Fake Data Injection via BLE Replay or Spoofing

Previous Page 13 of 21 Next

Details

Vulnerabilities 508

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy