Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-312

CWE-312

Cleartext Storage of Sensitive Information

Parent: CWE-311 - Missing Encryption of Sensitive Data

The product stores sensitive information in cleartext within a resource that might be accessible to another control sphere.

804 vulnerabilities with CWE-312

CVE-2022-22366 MEDIUM

IBM UrbanCode Deploy - Info Disclosure

CVE-2022-22478 MEDIUM

IBM Spectrum Protect Client <8.1.14.0 - Info Disclosure

CVE-2022-29620 MEDIUM

FileZilla 3.59.0 - Cleartext Storage of Sensitive Information in Memory

CVE-2022-31004 HIGH

CVEProject/cve-services - Info Disclosure

CVE-2022-23236 MEDIUM

NetApp E-Series SANtricity OS Controller 11.40-11.70.2 - Cleartext Storage of LDAP BIND Password

CVE-2022-22484 MEDIUM

IBM Spectrum Protect Operations Center <8.1.12/13 - Info Disclosure

CVE-2022-28214 HIGH

SAP BusinessObjects - Cleartext Storage of Sensitive Information in Sysmon Event Logs

CVE-2022-29868 MEDIUM

1Password 7.2.4-7.9.x < 7.9.3 - Unauthenticated Sensitive Information Exposure via Process Validation Bypass

CVE-2022-28162 LOW

Brocade SANnav < 2.2.0 - Cleartext Storage of Sensitive Information in REST API Authentication Token

CVE-2022-0835 HIGH

AVEVA System Platform 2020 - Info Disclosure

CVE-2022-25160 MEDIUM

Mitsubishielectric Fx5uc Firmware - Cleartext Storage

CVE-2022-25158 CRITICAL

Mitsubishielectric Fx5uc Firmware - Cleartext Storage

CVE-2022-26148 CRITICAL

Grafana & Zabbix Integration - Credentials Disclosure

CVE-2022-23234 MEDIUM

NetApp SnapCenter < 4.5 - Authenticated Plaintext Credential Exposure

CVE-2022-26778 MEDIUM

Veritas System Recovery <21 - Info Disclosure

CVE-2022-21818 MEDIUM

NVIDIA License System < 1.1 - Cleartext Storage of Sensitive Information

CVE-2022-22789 MEDIUM

Charactell FormStorm - Unauthenticated Account Takeover via Password File Manipulation

CVE-2022-23129 MEDIUM

Iconics Genesis64 < 10.97 - Cleartext Storage

CVE-2022-20660 MEDIUM

Cisco IP Phone Firmware < 14.1(1) - Unauthenticated Cleartext Storage of Sensitive Information

CVE-2021-22509 HIGH

NetIQ Advance Auth <6.3.5.1 - Info Disclosure

CVE-2021-39077 MEDIUM

IBM Security Guardium 10.5-11.4 - Cleartext Transmission of Sensitive Information

CVE-2021-36782 CRITICAL

SUSE Rancher < 2.5.16 - Authenticated Cleartext Storage of Sensitive Information via Kubernetes API

CVE-2021-39009 MEDIUM

IBM Cognos Analytics <11.2.1 - Info Disclosure

CVE-2021-3585 MEDIUM

openstack-tripleo-heat-templates - Info Disclosure

CVE-2021-41639 MEDIUM

MELAG FTP Server 2.2.0.4 - Cleartext Storage of Sensitive Information

Previous Page 19 of 33 Next

Details

Vulnerabilities 804

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy