Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-312

CWE-312

Cleartext Storage of Sensitive Information

Parent: CWE-311 - Missing Encryption of Sensitive Data

The product stores sensitive information in cleartext within a resource that might be accessible to another control sphere.

805 vulnerabilities with CWE-312

CVE-2019-10443 HIGH

Jenkins iceScrum Plugin <= 1.1.4 - Cleartext Storage of Sensitive Information in Job Config Files

CVE-2019-10440 HIGH

Jenkins NeoLoad Plugin < 2.2.5 - Cleartext Storage of Sensitive Information in Configuration Files

CVE-2019-3767 HIGH

Dell ImageAssist < 8.7.15 - Sensitive Information Exposure via Encrypted Image Storage

CVE-2019-15023 HIGH

Zingbox Inspector < 1.294 - Cleartext Storage of Sensitive Information in Device Configuration

CVE-2019-17106 MEDIUM

Centreon Web < 2.8.29 - Authenticated Cleartext Storage of Sensitive Information

CVE-2019-10433 LOW

Jenkins Dingding Plugin <1.9 & dingding-notifications <2.0.0 - Cleartext Storage of Sensitive Info

CVE-2019-10430 MEDIUM

Jenkins NeuVector Vulnerability Scanner < 1.5 - Cleartext Storage of Sensitive Information in Global Configuration

CVE-2019-4566 MEDIUM

IBM Security Key Lifecycle Manager <3.0.1 - Info Disclosure

CVE-2019-15947 HIGH

Bitcoin Core 0.18.0 - Info Disclosure

CVE-2019-15508 MEDIUM

Octopus Tentacle 3.0.8-5.0.0 - Authenticated Sensitive Information Disclosure in Deployment Log

CVE-2019-15507 MEDIUM

Octopus Server 2018.8.4-2019.7.6 - Authenticated Sensitive Information Disclosure in Deployment Log

CVE-2019-3753 MEDIUM

Dell EMC PowerConnect < 5.1.15.2 - Authenticated Plain-Text Password Exposure

CVE-2019-10099 HIGH

Apache Spark < 1.6.3 and 2.0.0-2.3.2 - Cleartext Storage of Sensitive Information

CVE-2019-13096 CRITICAL

TronLink Wallet 2.2.0 - Cleartext Storage of Sensitive Information in Keystore

CVE-2019-13100 MEDIUM

Send Anywhere 9.4.18 - Cleartext Storage of Sensitive Information in Device Configuration File

CVE-2019-13099 MEDIUM

Momo 2.1.9 - Cleartext Storage of Sensitive Information via Logcat

CVE-2019-10351 HIGH

Jenkins Caliper CI Plugin < 2.3 - Cleartext Storage of Sensitive Information in Job Configuration

CVE-2019-10350 HIGH

Jenkins Port Allocator Plugin < 1.8 - Cleartext Storage of Sensitive Information in Job Config Files

CVE-2019-10348 HIGH

Jenkins Gogs Plugin < 1.0.14 - Cleartext Storage of Sensitive Information in Job Config Files

CVE-2019-12171 HIGH

Dropbox <71.4.108.0 - Memory Corruption

CVE-2019-9873 CRITICAL

JetBrains IntelliJ IDEA Ultimate - Info Disclosure

CVE-2019-9872 HIGH

JetBrains IntelliJ IDEA Ultimate - Info Disclosure

CVE-2019-9823 CRITICAL

JetBrains IntelliJ IDEA - Info Disclosure

CVE-2019-5810 MEDIUM

Google Chrome < 74.0.3729.108 - Information Leak in Autofill via Crafted HTML Page

CVE-2019-1627 MEDIUM

Cisco Integrated Management Controller - Unprotected User Data Exposure via Configuration File

Previous Page 29 of 33 Next

Details

Vulnerabilities 805

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy