Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-312

CWE-312

Cleartext Storage of Sensitive Information

Parent: CWE-311 - Missing Encryption of Sensitive Data

The product stores sensitive information in cleartext within a resource that might be accessible to another control sphere.

804 vulnerabilities with CWE-312

CVE-2022-34339 MEDIUM

IBM Cognos Analytics 11.1.0-11.1.7 - Authenticated Cleartext Storage of Sensitive Information

CVE-2022-39364 MEDIUM

Nextcloud Server <23.0.9 & Enterprise <22.2.10.5 - Cleartext SharePoint Credentials in Logs

CVE-2022-39351 MEDIUM

OWASP Dependency-Track < 4.6.0 - Cleartext Storage of Sensitive Information in Audit Log

CVE-2022-2805 MEDIUM

Red Hat Virtualization - Cleartext Storage of Sensitive Information in Log Files

CVE-2022-3540 MEDIUM

hunter2 < 2.1.0 - Authenticated Cleartext Storage of Sensitive Information via Auto-Completion Input

CVE-2022-33918 MEDIUM

Dell GeoDrive <2.2 - Info Disclosure

CVE-2022-32217 MEDIUM

Rocket.Chat < 4.6.4 - Sensitive Information Exposure via OAuth Token Logging

CVE-2022-41248 MEDIUM

Jenkins BigPanda Notifier Plugin <1.4.0 - Info Disclosure

CVE-2022-26390 MEDIUM

Baxter Spectrum WBM - Info Disclosure

CVE-2022-37857 HIGH

hauk 1.6.1 - Cleartext Storage of Sensitive Information

CVE-2022-22069 HIGH

Qualcomm AQT1000 and Multiple Snapdragon Firmware - Cleartext Storage of Sensitive Information

CVE-2022-2739 MEDIUM

Red Hat Enterprise Linux 7 Extras Podman - Exposure of Sensitive Information via Environment Variables

CVE-2022-2569 MEDIUM

Arcinformatique PCVue <= 12.0.27 - Cleartext Storage of Sensitive Information

CVE-2022-2813 MEDIUM

SourceCodester Guest Management System - Info Disclosure

CVE-2022-33928 MEDIUM

Dell Wyse Management Suite <3.6.1 - Info Disclosure

CVE-2022-29090 HIGH

Dell Wyse Management Suite <3.6.1 - Info Disclosure

CVE-2022-34924 HIGH

Landray Office Automation - Arbitrary File Read via custom.jsp

CVE-2022-31205 HIGH

Omron CS/CJ/CP <2022-05-18 - Info Disclosure

CVE-2022-30275 HIGH

Motorola MOSCAD Toolbox - Cleartext Storage of Sensitive Information in wmdlcdrv.ini

CVE-2022-24660 HIGH

Goldshell ASIC Miners <2.2.1 - Info Disclosure

CVE-2022-30626 MEDIUM

CHCNAV P5E GNSS Firmware - Cleartext Storage of Sensitive Information in WiFi AP Configuration

CVE-2022-20219 MEDIUM

Android - Unencrypted User Directory Exposure via StorageManagerService Logic Error

CVE-2022-22031 HIGH

Windows Credential Guard - Privilege Escalation

CVE-2022-27549 MEDIUM

HCL Launch - Sensitive Information Disclosure via Plain Text Log Storage

CVE-2022-22367 MEDIUM

IBM UrbanCode Deploy - Info Disclosure

Previous Page 18 of 33 Next

Details

Vulnerabilities 804

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy