Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-312

CWE-312

Cleartext Storage of Sensitive Information

Parent: CWE-311 - Missing Encryption of Sensitive Data

The product stores sensitive information in cleartext within a resource that might be accessible to another control sphere.

805 vulnerabilities with CWE-312

CVE-2020-12859 MEDIUM

COVIDSafe <v1.0.17 - Info Disclosure

CVE-2020-10706 MEDIUM

OpenShift Container Platform - Info Disclosure

CVE-2020-11415 MEDIUM

Sonatype Nexus Repository Manager 2.0-2.14.16 - Cleartext Storage of Sensitive LDAP Credentials

CVE-2020-2177 MEDIUM

Jenkins Copr Plugin < 0.3 - Cleartext Storage of Sensitive Information in Job Config Files

CVE-2020-11826 HIGH

Memono 3.8 - Cleartext Storage of Sensitive Information in Database

CVE-2020-11694 HIGH

JetBrains PyCharm 2019.2.5 and 2019.3 - Insufficiently Protected Credentials

CVE-2020-10267 HIGH

Universal Robots ur_software 3.0.14989-3.1.18213 - Cleartext Storage of Sensitive Information in URCaps Files

CVE-2020-5723 CRITICAL

Grandstream UCM62xx IP PBX WebSocket Blind SQL Injection Credential Dump

CVE-2020-3921 HIGH

UltraLog Express Firmware - Cleartext Storage of Sensitive Information

CVE-2020-6980 LOW

Rockwell Automation MicroLogix 1400/1100 & RSLogix 500 <12.001 Cleartext SMTP Credentials

CVE-2020-10532 HIGH

WatchGuard Fireware <5.8.5.10317 - Info Disclosure

CVE-2020-2154 MEDIUM

Jenkins Zephyr for JIRA Test Management Plugin < 1.5 - Cleartext Storage of Sensitive Information

CVE-2020-6794 MEDIUM

Thunderbird <68.5 - Info Disclosure

CVE-2020-9407 MEDIUM

IBL Online Weather < 4.3.5 - Sensitive Information Exposure via IWEBSERVICE_JSONRPC_COOKIE

CVE-2020-3935 HIGH

TAIWAN SECOM CO., LTD. - Info Disclosure

CVE-2020-4224 MEDIUM

IBM StoredIQ 7.6.0.17-7.6.0.20 - Sensitive Information Disclosure via Unencrypted Symbolic Links

CVE-2020-7213 HIGH

Parallels 13 - Cleartext Storage of Sensitive Information via HTTP Update Process

CVE-2019-25279 HIGH

FaceSentry Access Control System 6.4.8 - Info Disclosure

CVE-2019-16638 HIGH

Ruijie EG-2000SE EG_RGOS 11.1(1)B1 - Cleartext Storage of Sensitive Information in Config File

CVE-2019-18630 HIGH

Xerox AltaLink B80xx/C80xx Firmware < 101.00x.099.28200 - Cleartext Storage of Sensitive Information

CVE-2019-4687 MEDIUM

IBM Security Guardium Data Encryption (GDE) <3.0.0.2 - Info Disclosure

CVE-2019-4738 MEDIUM

IBM Sterling B2B Integrator Standard Edition <6.0.3.1 - Info Disclo...

CVE-2019-4676 HIGH

IBM Security Identity Manager Virtual Appliance 7.0.2 - Info Disclo...

CVE-2019-18254 MEDIUM

BIOTRONIK CardioMessenger II-S GSM and T-Line Firmware - Cleartext Storage of Sensitive Information

CVE-2019-17655 MEDIUM

FortiOS < 6.2.3 - Cleartext Storage of Sensitive Information in SSL VPN Session Files

Previous Page 27 of 33 Next

Details

Vulnerabilities 805

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy