Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-312

CWE-312

Cleartext Storage of Sensitive Information

Parent: CWE-311 - Missing Encryption of Sensitive Data

The product stores sensitive information in cleartext within a resource that might be accessible to another control sphere.

804 vulnerabilities with CWE-312

CVE-2020-4604 MEDIUM

IBM Security Guardium Insights 2.0.2 - Cleartext Storage of Sensitive Information

CVE-2020-5018 HIGH

IBM Spectrum Protect Plus 10.1.0-10.1.6 - Cleartext Storage of Sensitive Information in URLs

CVE-2020-25678 MEDIUM

Ceph < 16.2.0 - Cleartext Storage of Sensitive Information in Mgr Module Logs

CVE-2020-5805 HIGH

Marvell QConvergeConsole GUI <= 5.5.0.74 - Info Disclosure

CVE-2020-24577 HIGH

D-Link DSL-2888A <AU_2.31_V1.1.47ae55 - Info Disclosure

CVE-2020-29502 HIGH

Dell EMC PowerStore <1.0.3.0.5.007 - Info Disclosure

CVE-2020-29501 MEDIUM

Dell EMC PowerStore <1.0.3.0.5.007 - Info Disclosure

CVE-2020-29500 HIGH

Dell EMC PowerStore <1.0.3.0.5.007 - Info Disclosure

CVE-2020-29489 MEDIUM

Dell EMC Unity <5.0.4.0.5.012 - Info Disclosure

CVE-2020-23249 MEDIUM

GigaVUE-OS 5.4-5.9 - Info Disclosure

CVE-2020-26288 HIGH

Parse Server <4.5.0 - Info Disclosure

CVE-2020-13473 MEDIUM

NCH Express Accounts <8.24 - Info Disclosure

CVE-2020-29550 HIGH

URVE Build 24.03.2020 - Info Disclosure

CVE-2020-35658 MEDIUM

SpamTitan < 7.09 - Unauthenticated Backup Tampering via Unencrypted Backup Files

CVE-2020-4843 MEDIUM

IBM Security Secret Server 10.6 - Authenticated Sensitive Information Exposure via Config Files

CVE-2020-17511 MEDIUM

Apache Airflow < 1.10.13 - Cleartext Storage of Sensitive Information in Log Table

CVE-2020-26816 MEDIUM

SAP AS JAVA 7.10-7.50 - Info Disclosure

CVE-2020-25677 MEDIUM

ceph-ansible - Cleartext Storage of Sensitive Information in iscsi-gateway.conf

CVE-2020-26228 HIGH

TYPO3 9.0.0-9.5.22 and 10.0.0-10.4.9 - Cleartext Storage of Sensitive Information

CVE-2020-28917 MEDIUM

view_frontend_statistics < 2.0.1 - Cleartext Storage of Sensitive Information in Database

CVE-2020-26551 HIGH

Aviatrix Controller <R5.3.1151 - Info Disclosure

CVE-2020-8276 MEDIUM

Brave Desktop <1.18.35 - Info Disclosure

CVE-2020-27986 HIGH

SonarQube 8.4.2.36762 - Unauthenticated Cleartext Credential Exposure via API Settings Endpoint

CVE-2020-27613 HIGH

BigBlueButton <2.2.28 - Privilege Escalation

CVE-2020-6648 MEDIUM

FortiProxy 2.0.0 and <1.2.10 - Authenticated Cleartext Storage of Sensitive Information via CLI Command

Previous Page 25 of 33 Next

Details

Vulnerabilities 804

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy