Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-312

CWE-312

Cleartext Storage of Sensitive Information

Parent: CWE-311 - Missing Encryption of Sensitive Data

The product stores sensitive information in cleartext within a resource that might be accessible to another control sphere.

804 vulnerabilities with CWE-312

CVE-2023-22332 MEDIUM

Pgpool-II 3.3.0-3.7.11 - Cleartext Storage of Sensitive Information

CVE-2023-24454 MEDIUM

Jenkins TestQuality Updater Plugin <1.3 - Info Disclosure

CVE-2023-24450 MEDIUM

Jenkins view-cloner Plugin <1.1 - Info Disclosure

CVE-2023-24442 MEDIUM

Jenkins GitHub Pull Request Coverage Status Plugin <2.2.0 - Info Di...

CVE-2023-24439 MEDIUM

Jenkins JIRA Pipeline Steps Plugin <2.0.165.v8846cf59f3db - Info Di...

CVE-2023-24055 MEDIUM

KeePass < 2.53 - Cleartext Password Exposure via Export Trigger

CVE-2022-46141 MEDIUM

SIMATIC STEP 7 (TIA Portal) < V19 - Info Disclosure

CVE-2022-22302 MEDIUM

FortiGate/FortiAuthenticator <6.4.1/6.2.9/<6.0.13 - Info Disclosure

CVE-2022-33159 MEDIUM

IBM Security Directory Suite VA <8.0.1.19 - Info Disclosure

CVE-2022-48310 MEDIUM

Sophos Connect < 2.2.90 - Sensitive Key Material Exposure in Technical Support Archives

CVE-2022-34910 MEDIUM

aremis_4_nomads < 1.5.1 - Cleartext Storage of Sensitive Information

CVE-2022-31405 MEDIUM

MV iDigital Clinic Enterprise (iDCE) 1.0 - Info Disclosure

CVE-2022-34351 MEDIUM

IBM QRadar SIEM 7.4-7.5 - Unauthorized Information Exposure via Domain Security Profile

CVE-2022-41734 MEDIUM

IBM Maximo Asset Management <7.6.1.3 - Info Disclosure

CVE-2022-45154 MEDIUM

supportutils < 3.0.10-95.51.1 - Cleartext Storage of Sensitive Information in Support Logs

CVE-2022-3089 MEDIUM

Echelon SmartServer 2.2 - Info Disclosure

CVE-2022-34388 HIGH

Dell SupportAssist < 3.11.4 (Home) / < 3.2.0 (Business) - Cleartext Sensitive Data Storage

CVE-2022-24410 MEDIUM

Dell Alienware BIOS < 1.15.1 - Unauthenticated Sensitive Information Exposure via Debug Interfaces

CVE-2022-43757 CRITICAL

SUSE Rancher <2.5.17, <2.6.10, <2.7.1 - Info Disclosure

CVE-2022-45098 MEDIUM

Dell PowerScale OneFS 9.1.0.0-9.1.0.25 - Authenticated Sensitive Information Disclosure in S3 Component

CVE-2022-45897 MEDIUM

Xerox WorkCentre 3550 25.003.03.000 - Authenticated Cleartext Storage of Sensitive Information in SMB Server Settings

CVE-2022-48073 HIGH

Phicomm K2G v22.6.3.20 - Cleartext Storage of Sensitive Information

CVE-2022-48071 HIGH

Phicomm K2 v22.6.534.263 - Cleartext Storage of Sensitive Information

CVE-2022-38112 HIGH

SolarWinds Database Performance Analyzer < 2022.4 - Cleartext Storage of Sensitive Information in Heap Memory Dumps

CVE-2022-45439 MEDIUM

Zyxel AX7501-B0 Firmware < 5.17(ABPC.3)C0 - Cleartext Storage of Sensitive WiFi Credentials

Previous Page 16 of 33 Next

Details

Vulnerabilities 804

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy