Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-312

CWE-312

Cleartext Storage of Sensitive Information

Parent: CWE-311 - Missing Encryption of Sensitive Data

The product stores sensitive information in cleartext within a resource that might be accessible to another control sphere.

805 vulnerabilities with CWE-312

CVE-2020-6648 MEDIUM

FortiProxy 2.0.0 and <1.2.10 - Authenticated Cleartext Storage of Sensitive Information via CLI Command

CVE-2020-4619 MEDIUM

IBM Data Risk Manager < 2.0.6.4 - Authenticated Cleartext Storage of Sensitive Information

CVE-2020-8225 HIGH

Nextcloud Desktop Client 2.6.4 - Info Disclosure

CVE-2020-2274 MEDIUM

Jenkins ElasTest Plugin <1.2.1 - Info Disclosure

CVE-2020-15784 MEDIUM

Spectrum Power 4 < 4.70 SP8 - Cleartext Storage of Sensitive Information in Configuration Files

CVE-2020-15485 MEDIUM

Niscomed M1000 Multipara Patient Monitor Firmware - Cleartext Storage of Sensitive Information

CVE-2020-15484 HIGH

Niscomed M1000 Multipara Patient Monitor Firmware - Cleartext Storage of Sensitive Information

CVE-2020-17495 HIGH

django-celery-results <1.2.1 - Info Disclosure

CVE-2020-7517 MEDIUM

Easergy Builder < 1.4.7.2 - Cleartext Storage of Sensitive Information

CVE-2020-7516 HIGH

Easergy Builder < 1.4.7.2 - Cleartext Storage of Sensitive Information in Memory

CVE-2020-4369 MEDIUM

IBM Verify Gateway 1.0.0 and 1.0.1 - Cleartext Storage of Sensitive Information

CVE-2020-4095 MEDIUM

HCL BigFix Platform 9.2-9.2.18 - Insufficiently Protected Credentials in Memory

CVE-2020-15105 MEDIUM

Django Two-Factor Authentication <1.12 - Info Disclosure

CVE-2020-5899 HIGH

NGINX Controller 3.0.0-3.4.0 - Info Disclosure

CVE-2020-15085 MEDIUM

Saleor Storefront <2.10.3 - Info Disclosure

CVE-2020-12032 CRITICAL

Baxter ExactaMix EM 2400 and EM1200 - Cleartext Storage of Sensitive Information

CVE-2020-10727 MEDIUM

ActiveMQ Artemis <2.12.0 - Info Disclosure

CVE-2020-14017 HIGH

Navigate CMS 2.9 r1433 - Unauthenticated Cleartext Storage of Sensitive Information in Session Files

CVE-2020-10273 HIGH

MiR and ER Series Firmware < 2.8.1.1 - Cleartext Storage of Sensitive Information

CVE-2020-13637 HIGH

stashcat < 3.9.2 - Cleartext Storage of Sensitive Encryption Keys

CVE-2020-7513 HIGH

Easergy T300 Firmware <= 1.5.2 - Cleartext Storage of Sensitive Information

CVE-2020-9462 MEDIUM

Athom Homey and Homey Pro < 4.2.0 - Cleartext Storage of Sensitive Information in Network Configuration

CVE-2020-13783 HIGH

D-Link DIR-865L Firmware 1.20B01 Beta - Cleartext Storage of Sensitive Information

CVE-2020-9045 CRITICAL

American Dynamics victor Video Management System 5.2 - Cleartext Credential Storage in Install Log

CVE-2020-12801 MEDIUM

LibreOffice 6.3.0-6.3.5 and 6.4.0-6.4.2 - Cleartext Storage of Sensitive Information via Auto-Recovery

Previous Page 26 of 33 Next

Details

Vulnerabilities 805

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy