Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-312

CWE-312

Cleartext Storage of Sensitive Information

Parent: CWE-311 - Missing Encryption of Sensitive Data

The product stores sensitive information in cleartext within a resource that might be accessible to another control sphere.

804 vulnerabilities with CWE-312

CVE-2025-12774 HIGH

Brocade SANnav <3.0 - Info Disclosure

CVE-2025-12772 MEDIUM

Brocade SANnav <2.4.0b - Info Disclosure

CVE-2025-12680 MEDIUM

Brocade SANnav <2.4.0b - Info Disclosure

CVE-2025-12679 MEDIUM

Brocade SANnav <2.4.0b - Info Disclosure

CVE-2025-59105 HIGH

dormakaba Access Manager 92xx-k5 and 92xx-k7 - Cleartext Storage of Sensitive Information

CVE-2025-59102 MEDIUM

dormakaba Access Manager 92xx-k5 < XAMB 04.06.212 - Cleartext Storage of Sensitive Information in Database Backup

CVE-2025-14377 HIGH

Verve Asset Manager - Info Disclosure

CVE-2025-14836 LOW

ZZCMS 2025 - Cleartext Storage of Sensitive Information in User Data Storage Module

CVE-2025-11009 MEDIUM

Mitsubishi Electric GT Designer3 - Info Disclosure

CVE-2025-65826 CRITICAL

meatmeet - Cleartext Storage of Sensitive Wi-Fi Credentials

CVE-2025-34428 HIGH

MailEnable < 10.54 - Cleartext Storage of Sensitive Information in AUTH.SAV

CVE-2025-34427 HIGH

MailEnable < 10.54 - Cleartext Storage of Sensitive Information in AUTH.TAB

CVE-2025-67638 MEDIUM

Jenkins < 2.528.3 and 2.529-2.540 - Cleartext Storage of Sensitive Information in Job Configuration Form

CVE-2025-67637 MEDIUM

Jenkins < 2.528.3, 2.529-2.540 - Cleartext Storage of Build Authorization Tokens in config.xml

CVE-2025-65320 HIGH

Abacre Restaurant Point of Sale < 15.0.0.1656 - Cleartext Storage of Sensitive Information in Memory

CVE-2025-59701 MEDIUM

Entrust nShield Connect XC, nShield 5c, and nShield HSMi < 13.6.12 - Unencrypted Sensitive Data Storage on Appliance SSD

CVE-2025-59792 MEDIUM

Apache Kvrocks 1.0.0-2.13.0 - Cleartext Storage of Sensitive Information in MONITOR Command

CVE-2025-3784 MEDIUM

GX Works2 - Cleartext Storage of Sensitive Information in Project Files

CVE-2025-65278 HIGH

GroceryMart - Unauthenticated Exposure of Sensitive Information in users.json

CVE-2025-63729 CRITICAL

Syrotech SY-GPON-1110-WDONT SYRO_3.7L_3.1.02-240517 - Info Disclosure

CVE-2025-25613 HIGH

FS S3150-8T2F Firmware < 2.2.0D - Cleartext Storage of Sensitive Information in Web Admin Cookies

CVE-2025-63208 HIGH

Bridgetech VB288 <5.6.0-8 - Info Disclosure

CVE-2025-54342 LOW

Desktop Alert PingAlert Server 6.1.0.11-6.1.1.2 Sensitive Information Exposure

CVE-2025-34270 MEDIUM

Nagios Log Server < 2024R2.0.2 - Insufficiently Protected Credentials in AD/LDAP User Import

CVE-2025-62261 MEDIUM

Liferay Portal 7.4.0-7.4.3.99 & DXP 2023.Q3.1-2023.Q3.4, 7.4 GA-92, 7.3 GA-34 - Cleartext Password Reset Tokens

Previous Page 3 of 33 Next

Details

Vulnerabilities 804

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy