Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-312

CWE-312

Cleartext Storage of Sensitive Information

Parent: CWE-311 - Missing Encryption of Sensitive Data

The product stores sensitive information in cleartext within a resource that might be accessible to another control sphere.

804 vulnerabilities with CWE-312

CVE-2023-24586 MEDIUM

SkyBridge MB-A100/110 <4.2.0 - Info Disclosure

CVE-2023-30853 HIGH

Gradle Build Action < 2.4.2 - Exposure of Sensitive Information via GitHub Actions Cache

CVE-2023-29471 MEDIUM

Lightbend Alpakka Kafka < 5.0.0 - Cleartext Storage of Sensitive Information in Debug Logs

CVE-2023-2335 MEDIUM

42gears SureLock <2.40.0 - Info Disclosure

CVE-2023-29480 HIGH

Ribose RNP < 0.16.3 - Cleartext Storage of Sensitive Information

CVE-2023-31043 HIGH

EDB Postgres Advanced Server <14.6.0 - Info Disclosure

CVE-2023-22894 MEDIUM

Strapi < 4.8.0 - Sensitive Information Exposure via Query Filter

CVE-2023-22949 MEDIUM

TigerGraph Enterprise Free Edition 3.x - Cleartext Storage of Sensitive Information in GSQL Access Logs

CVE-2023-30531 MEDIUM

Jenkins Consul KV Builder Plugin < 2.0.13 - Cleartext Storage of Sensitive Information

CVE-2023-30530 MEDIUM

Jenkins Consul KV Builder Plugin <= 2.0.13 - Cleartext Storage of Sensitive Information

CVE-2023-30528 MEDIUM

Jenkins WSO2 Oauth Plugin <= 1.0 - Cleartext Storage of Sensitive Information in Global Configuration Form

CVE-2023-30527 MEDIUM

Jenkins WSO2 Oauth Plugin < 1.0 - Cleartext Storage of Sensitive Information in Global Config

CVE-2023-30523 MEDIUM

Jenkins Report Portal Plugin <= 0.5 - Cleartext Storage of Sensitive Information in Job Configuration

CVE-2023-0005 MEDIUM

Palo Alto Networks PAN-OS - Info Disclosure

CVE-2023-26593 HIGH

Yokogawa CENTUM and B/M9000 - Cleartext Storage of Sensitive Information

CVE-2023-0614 MEDIUM

Samba 4.0.0-4.16.9 - Exposure of Sensitive Information via LDAP Filter Bypass

CVE-2023-1683 MEDIUM

Xunrui CMS 4.61 - Info Disclosure

CVE-2023-25263 MEDIUM

Stimulsoft Designer 2023.1.4-2023.1.5 - Cleartext Storage of Sensitive Information in Connection String

CVE-2023-20059 MEDIUM

Cisco Catalyst Center < 2.3.3.7 - Authenticated Cleartext Storage of Sensitive Information via PnP Agent API

CVE-2023-25596 MEDIUM

ClearPass Policy Manager - Cleartext Storage of Sensitive Information

CVE-2023-23776 MEDIUM

FortiAnalyzer 6.4.0-6.4.10, 7.0.0-7.0.4, 7.2.0-7.2.1 - Sensitive Info Exposure via Heartbeat

CVE-2023-26760 HIGH

Sme.UP ERP TOKYO V6R1M220406 - Info Disclosure

CVE-2023-24964 MEDIUM

IBM InfoSphere Information Server 11.7 - Sensitive Information Exposure via Log Files

CVE-2023-0690 MEDIUM

HashiCorp Boundary 0.10.0-0.11.2 - Cleartext Storage of Sensitive Information in PKI Worker Credentials

CVE-2023-23944 LOW

Nextcloud Mail <2.2.2 - Info Disclosure

Previous Page 15 of 33 Next

Details

Vulnerabilities 804

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy