CWE-311
High likelihoodMissing Encryption of Sensitive Data
The product does not encrypt sensitive or critical information before storage or transmission.
508 vulnerabilities with CWE-311
CVE-2020-27650
MEDIUM
Synology DSM <6.2.3-25426-2 - Info Disclosure
CVSS 5.8
CVE-2020-9774
HIGH
macOS < 10.15.3 - Unprotected User Data Exposure via Siri Suggestions
CVSS 7.5
CVE-2020-15771
HIGH
Gradle Enterprise - Missing Encryption of Sensitive Data in CSRF Token Cookie
CVSS 7.5
CVE-2020-15767
MEDIUM
Gradle Enterprise < 2020.2.5 - Missing Encryption of Sensitive Data in CSRF Cookie
CVSS 5.3
CVE-2020-2250
MEDIUM
Jenkins SoapUI Pro Functional Testing Plugin <1.3 - Info Disclosure
CVSS 6.5
CVE-2020-2249
LOW
Jenkins Team Foundation Server Plugin <5.157.1 - Info Disclosure
CVSS 3.3
CVE-2020-2239
MEDIUM
Jenkins Parameterized Remote Trigger Plugin <3.1.3 - Info Disclosure
CVSS 4.3
CVE-2020-4591
LOW
IBM Spectrum Protect Server 8.1.0.000-8.1.10.000 - Sensitive Information Disclosure via Unencrypted Chunk
CVSS 3.3
CVE-2020-3389
MEDIUM
Cisco Hyperflex HX-Series Software - Info Disclosure
CVSS 4.4
CVE-2020-9062
MEDIUM
Diebold Nixdorf ProCash 2100xe USB ATMs - Info Disclosure
CVSS 5.3
CVE-2020-10124
HIGH
NCR SelfServ ATMs APTRA XFS 05.01.00 - Code Injection
CVSS 7.1
CVE-2020-10039
HIGH
SICAM MMU < 2.05, SICAM SGU, SICAM T < 2.18 - Missing Encryption of Sensitive Data
CVSS 8.1
CVE-2020-12032
CRITICAL
Baxter ExactaMix EM 2400 and EM1200 - Cleartext Storage of Sensitive Information
CVSS 9.1
CVE-2020-10273
HIGH
MiR and ER Series Firmware < 2.8.1.1 - Cleartext Storage of Sensitive Information
CVSS 7.5
CVE-2020-4233
MEDIUM
IBM Security Identity Governance and Intelligence 5.2.6 - Sensitive Information Exposure via Unsecured Session Cookie
CVSS 5.3
CVE-2020-12801
MEDIUM
LibreOffice 6.3.0-6.3.5 and 6.4.0-6.4.2 - Cleartext Storage of Sensitive Information via Auto-Recovery
CVSS 5.3
CVE-2020-12273
HIGH
TestLink 1.9.20 - Insufficiently Protected Credentials via Login Parameter
CVSS 7.5
CVE-2020-10267
HIGH
Universal Robots ur_software 3.0.14989-3.1.18213 - Cleartext Storage of Sensitive Information in URCaps Files
CVSS 7.5
CVE-2019-4471
MEDIUM
IBM Cognos Analytics 11.0-11.1 - Info Disclosure
CVSS 6.5
CVE-2019-14480
CRITICAL
AdRem NetCrunch 10.6.0.4587 - Auth Bypass
CVSS 9.8
CVE-2019-4686
MEDIUM
IBM Security Guardium Data Encryption (GDE) <3.0.0.2 - Open Redirect
CVSS 5.3
CVE-2019-4704
MEDIUM
IBM Security Identity Manager Virtual Appliance 7.0.2 - Open Redirect
CVSS 4.3
CVE-2019-18254
MEDIUM
BIOTRONIK CardioMessenger II-S GSM and T-Line Firmware - Cleartext Storage of Sensitive Information
CVSS 4.6
CVE-2019-19090
LOW
Hitachi Energy eSOMS 4.0-6.0.2 - Missing Secure Flag in HTTP Response Header
CVSS 3.5
CVE-2019-15653
HIGH
Comba AP2600-I A02,0202N00PD2 - Insufficiently Protected Credentials via Login Page HTML Source
CVSS 7.5
Details
Vulnerabilities
508
Exploit Likelihood
High