Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-311

CWE-311

High likelihood

Missing Encryption of Sensitive Data

Parent: CWE-693 - Protection Mechanism Failure

The product does not encrypt sensitive or critical information before storage or transmission.

508 vulnerabilities with CWE-311

CVE-2023-50129 MEDIUM

Flient Smart Door Lock v1.0 - Missing Encryption of Sensitive Data in NFC Tags

CVE-2023-50126 MEDIUM

Hozard Alarm System v1.0 - Missing Encryption of Sensitive Data in RFID Tags

CVE-2023-38267 MEDIUM

IBM Security Verify Access <10.0.6.1 - Privilege Escalation

CVE-2023-6339 CRITICAL

Google Nest WiFi Pro Firmware - Missing Encryption of Sensitive Data

CVE-2023-33037 HIGH

Qualcomm AR8035 Firmware - Cryptographic Issue in Key Unwrapping and RPMB Verification

CVE-2023-46219 MEDIUM

curl 7.84.0-8.4.0 - Missing Encryption of Sensitive Data via HSTS File Handling

CVE-2023-42019 MEDIUM

IBM InfoSphere Information Server 11.7.0.0-11.7.1.4 DoS via Improper Input Validation

CVE-2023-44098 HIGH

Card Management Module - Info Disclosure

CVE-2023-33228 MEDIUM

SolarWinds Network Configuration Manager - Info Disclosure

CVE-2023-41096 MEDIUM

Silicon Labs Ember ZNet SDK <7.3.1 - Info Disclosure

CVE-2023-41095 MEDIUM

Silicon Labs OpenThread SDK <2.3.1 - Info Disclosure

CVE-2023-33837 MEDIUM

IBM Security Verify Governance 10.0 - Info Disclosure

CVE-2023-23371 MEDIUM

QVPN 2.2.0-2.2.0.0823 - Authenticated Cleartext Transmission of Sensitive Information

CVE-2023-43618 MEDIUM

schollz/croc < 9.6.5 - Unauthenticated Local IP Address Exposure via Cleartext Protocol Message

CVE-2023-4580 MEDIUM

Firefox <117, Firefox ESR <115.2, Thunderbird <115.2 - Info Disclosure

CVE-2023-33833 LOW

IBM Security Verify Information Queue <10.0.4,10.0.5 - Info Disclosure

CVE-2023-4420 CRITICAL

SICK LMS5xx Firmware - Unauthenticated Sensitive Data Exposure via Missing TLS Encryption

CVE-2023-40251 MEDIUM

Genian NAC 4.0.0-4.0.155, 5.0.0-5.0.42 & Suite 5.0.0-5.0.54 & ZTNA 6.0.0-6.0.15 - Sensitive Data Unencrypted

CVE-2023-4384 LOW

MaximaTech Portal Executivo 21.9.1.140 - Info Disclosure

CVE-2023-39843 LOW

Sulimet 5-in-1 Smart Door Lock Firmware v1.0 - Missing Encryption of Sensitive Data in RFID Tag

CVE-2023-39842 LOW

Digoo DG-HAMB Smart Home Security System v1.0 - Missing Encryption of Sensitive Data in RFID Tag

CVE-2023-39841 MEDIUM

Etekcity 3-in-1 Smart Door Lock Firmware v1.0 - Missing Encryption of Sensitive Data in RFID Tag

CVE-2023-39954 LOW

nextcloud/user_oidc 1.0.0-1.3.2 - Missing Encryption of Sensitive Data

CVE-2023-37858 MEDIUM

PHOENIX CONTACT WP 6xxx Series Firmware < 4.0.10 - Authenticated Hardcoded Cryptographic Key Exposure

CVE-2023-38699 CRITICAL

MindsDB's AI Virtual Database <23.7.4.0 - Info Disclosure

Previous Page 4 of 21 Next

Details

Vulnerabilities 508

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy