Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-311

CWE-311

High likelihood

Missing Encryption of Sensitive Data

Parent: CWE-693 - Protection Mechanism Failure

The product does not encrypt sensitive or critical information before storage or transmission.

508 vulnerabilities with CWE-311

CVE-2025-45768 HIGH

pyjwt - Weak Encryption via Insufficient Key Length Enforcement

CVE-2025-43274 MEDIUM

macOS Sequoia <15.6 - Info Disclosure

CVE-2025-40680 MEDIUM

CapillaryScope <2.5.0 - Info Disclosure

CVE-2025-33020 MEDIUM

IBM Engineering Systems Design Rhapsody <10.0.1 - Info Disclosure

CVE-2025-36062 MEDIUM

IBM Cognos Analytics Mobile 1.1.0-1.1.22 - Sensitive Data Exposure via Unencrypted Network Traffic

CVE-2025-53678 MEDIUM

Jenkins User1st uTester Plugin <1.1 - Info Disclosure

CVE-2025-53676 MEDIUM

Jenkins Xooa Plugin <0.0.7 - Info Disclosure

CVE-2025-53673 MEDIUM

Jenkins Sensedia Api Platform tools Plugin 1.0 - Info Disclosure

CVE-2025-53668 MEDIUM

Jenkins VAddy Plugin <1.2.8 - Info Disclosure

CVE-2025-53666 MEDIUM

Jenkins Dead Man's Snitch Plugin 0.1 - Info Disclosure

CVE-2025-53663 MEDIUM

Jenkins IBM Cloud DevOps Plugin <2.0.16 - Info Disclosure

CVE-2025-53659 MEDIUM

Jenkins QMetry Test Management Plugin <1.13 - Info Disclosure

CVE-2025-53653 MEDIUM

Jenkins Aqua Security Scanner Plugin <3.2.8 - Info Disclosure

CVE-2025-32875 MEDIUM

COROS Android App <= 3.8.12 - Unencrypted Bluetooth Communication via Missing Pairing Enforcement

CVE-2025-24008 MEDIUM

SIRIUS 3RK3 MSS & 3SK2 - Info Disclosure

CVE-2025-47274 LOW

ToolHive < 0.0.33 - Unauthenticated Sensitive Data Exposure via Run Config Files

CVE-2025-29314 HIGH

OpenDaylight SFC OVS - Missing Encryption of Sensitive Data in Shiro Cookie

CVE-2025-1243 LOW

Temporal api-go <1.44.1 - Info Disclosure

CVE-2024-41982 MEDIUM

Siemens Opcenter Quality SmartClient Modules - Missing Encryption of Sensitive Data

CVE-2024-41980 LOW

Siemens Opcenter Quality SmartClient Modules >= V13.2 < V2506 - Unencrypted LDAP Communication

CVE-2024-38325 MEDIUM

IBM Storage Defender <2.0.8 - Info Disclosure

CVE-2024-41757 MEDIUM

IBM Concert 1.0.0 and 1.0.1 - Cleartext Transmission of Sensitive Information

CVE-2024-7142 MEDIUM

Arista CloudVision < - Info Disclosure

CVE-2024-56439 HIGH

Identity Authentication Module - Info Disclosure

CVE-2024-47871 CRITICAL

gradio < 5.0.0 - Missing Encryption of Sensitive Data via FRP Client-Server Communication

Previous Page 2 of 21 Next

Details

Vulnerabilities 508

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy