Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-312

CWE-312

Cleartext Storage of Sensitive Information

Parent: CWE-311 - Missing Encryption of Sensitive Data

The product stores sensitive information in cleartext within a resource that might be accessible to another control sphere.

805 vulnerabilities with CWE-312

CVE-2019-11966 HIGH

HPE IMC <7.3 - Privilege Escalation

CVE-2019-3937 HIGH

Crestron AM-100 and AM-101 - Cleartext Storage of Sensitive Information in Configuration File

CVE-2019-11384 CRITICAL

Zalora app 6.15.1 - Info Disclosure

CVE-2019-0285 CRITICAL

SAP Crystal Reports for Visual Studio - Cleartext Storage of Sensitive Database Credentials

CVE-2019-3612 MEDIUM

McAfee Data Exchange Layer 4.0.0-4.1.1 & Threat Intelligence Exchange 2.0.0-2.3.0 - Sensitive Info Exposure

CVE-2019-3606 HIGH

McAfee Network Security Manager 9.1-9.1.7.75 and 9.2-9.2.7.31 - Cleartext Storage of Sensitive Information in Web Portal

CVE-2019-5765 MEDIUM

Google Chrome on Android < 72.0.3626.81 - Cleartext Storage of Sensitive Information via Debugging Endpoint

CVE-2019-6549 HIGH

PR100088 Modbus Gateway Firmware < r02 - Unauthenticated Plain-Text Credential Exposure via FTP

CVE-2018-16498 MEDIUM

Versa Director - Cleartext Storage of Sensitive Information in Backup Files

CVE-2018-19941 HIGH

QNAP QTS/QuTS Cleartext Storage of Sensitive Information in Cookie

CVE-2018-2028 MEDIUM

IBM Maximo Asset Management 7.6 - Authenticated Cleartext Storage of Sensitive Information

CVE-2018-20008 MEDIUM

iBall Baton iB-WRB302N20122017 - Info Disclosure

CVE-2018-1882 MEDIUM

IBM Spectrum Protect Backup-Archive Client 7.1.0.0-7.1.8.4 Cleartext Sensitive Info in Trace File

CVE-2018-19981 HIGH

Amazon AWS SDK <=2.8.5 for Android - Info Disclosure

CVE-2018-17499 LOW

Envoy Passport - Sensitive Information Exposure via Unencrypted Log Storage

CVE-2018-17489 LOW

HID Global EasyLobby Solo - Cleartext Storage of Sensitive Information in Visitor Database

CVE-2018-12572 HIGH

Avast Free Antivirus <19.1.2360 - Info Disclosure

CVE-2018-16889 MEDIUM

Ceph < 13.2.4 - Sensitive Information Disclosure in Debug Logging

CVE-2018-19009 HIGH

Pilz PNOZmulti Configurator < 10.9.0 - Authenticated Cleartext Storage of Sensitive Credential Data

CVE-2018-18984 MEDIUM

Medtronic CareLink and Encore Programmers - Cleartext Storage of Sensitive Information

CVE-2018-18641 CRITICAL

GitLab 8.10.0-11.2.6 11.3.0-11.3.7 11.4.0-11.4.2 - Cleartext Storage of Sensitive Information

CVE-2018-5559 LOW

Rapid7 Komand <0.41.0 - Info Disclosure

CVE-2018-19279 MEDIUM

PRIMX ZoneCentral <6.1.2236 - Info Disclosure

CVE-2018-1877 MEDIUM

IBM Robotic Process Automation with Automation Anywhere 11 - Cleartext Storage of Sensitive Information

CVE-2018-18394 CRITICAL

Moxa ThingsPro 2.1 - Cleartext Storage of Sensitive Information

Previous Page 30 of 33 Next

Details

Vulnerabilities 805

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy