Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-311

CWE-311

High likelihood

Missing Encryption of Sensitive Data

Parent: CWE-693 - Protection Mechanism Failure

The product does not encrypt sensitive or critical information before storage or transmission.

508 vulnerabilities with CWE-311

CVE-2022-22405 MEDIUM

IBM Aspera Faspex 5.0.5 - Info Disclosure

CVE-2022-38458 MEDIUM

Netgear Orbi Router RBR750 4.6.8.5 - Info Disclosure

CVE-2022-21940 HIGH

Johnson Controls SCT <14.2.3, 15.0.3 - Info Disclosure

CVE-2022-47715 MEDIUM

Last Yard 22.09.8-1 - Missing Encryption of Sensitive Data

CVE-2022-38658 HIGH

HCL BigFix Server Automation < 3.2.1 - Sensitive Data Exposure via SMTP Notification Service

CVE-2022-4683 MEDIUM

GitHub usememos/memos <0.9.0 - Info Disclosure

CVE-2022-4409 HIGH

thorsten/phpmyfaq <3.1.9 - Info Disclosure

CVE-2022-3781 MEDIUM

Devolutions Server < 2022.3.2 and Remote Desktop Manager < 2022.2.27 - Insufficiently Protected Credentials

CVE-2022-40295 MEDIUM

php_point_of_sale - Authenticated Information Disclosure of Unsalted Password Hashes

CVE-2022-41627 MEDIUM

AliveCor's KardiaMobile - Info Disclosure

CVE-2022-35860 MEDIUM

Corsair K63 Wireless <3.1.3 - Info Disclosure

CVE-2022-3251 MEDIUM

GitHub ikus060/minarca <4.2.2 - Info Disclosure

CVE-2022-3250 MEDIUM

GitHub rdiffweb <2.4.6 - Info Disclosure

CVE-2022-39014 MEDIUM

SAP BusinessObjects <4.30 - Info Disclosure

CVE-2022-3174 HIGH

GitHub ikus060/rdiffweb <2.4.2 - Info Disclosure

CVE-2022-26390 MEDIUM

Baxter Spectrum WBM - Info Disclosure

CVE-2022-38194 MEDIUM

Esri Portal for ArcGIS <10.8.1 - Info Disclosure

CVE-2022-34307 MEDIUM

IBM CICS TX 11.1 - Missing Encryption of Sensitive Data in Session Cookies

CVE-2022-31085 MEDIUM

LDAP Account Manager <8.0 - Info Disclosure

CVE-2022-30237 HIGH

Wiser Smart EER21000 and EER21001 < 4.5 - Missing Encryption of Sensitive Data

CVE-2022-24045 MEDIUM

Desigo DXR2 < V01.21.142.5-22 - Info Disclosure

CVE-2022-26281 HIGH

BigAnt Server <5.6.06 - Info Disclosure

CVE-2022-27225 MEDIUM

Gradle Enterprise >=2020.1 <2021.4.3 - Session Hijacking via Insecure Keycloak Cookie Transmission

CVE-2022-26157 MEDIUM

Cherwell Service Mgmt <10.2.3 - Info Disclosure

CVE-2022-0183 MEDIUM

MIRUPASS PW10 and PW20 Firmware - Unprotected Password Exposure via Physical Access

Previous Page 6 of 21 Next

Details

Vulnerabilities 508

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy