Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-312

CWE-312

Cleartext Storage of Sensitive Information

Parent: CWE-311 - Missing Encryption of Sensitive Data

The product stores sensitive information in cleartext within a resource that might be accessible to another control sphere.

804 vulnerabilities with CWE-312

CVE-2025-1499 MEDIUM

IBM InfoSphere Information Server 11.7 - Cleartext Storage of Sensitive Information in Database Credential File

CVE-2025-44614 HIGH

Tinxy WiFi Lock Controller v1 RF - Cleartext Storage of Sensitive Information

CVE-2025-32752 MEDIUM

Dell ThinOS < 2502 - Cleartext Storage of Sensitive Information

CVE-2025-4053 MEDIUM

Be-Tech Mifare Classic - Info Disclosure

CVE-2025-5154 LOW

PhonePe App 25.03.21.0 - Info Disclosure

CVE-2025-4737 MEDIUM

com.transsion.aivoiceassistant - Info Disclosure

CVE-2025-4537 LOW

yangzongzhuan RuoYi-Vue <3.8.9 - Info Disclosure

CVE-2025-46820 HIGH

phpgt/Dom < 4.1.8 - Exposure of Sensitive Information via GitHub Token in Workflow Artifact

CVE-2025-46634 HIGH

Tenda RX2 Pro 16.03.30.14 - Info Disclosure

CVE-2025-46633 HIGH

Tenda RX2 Pro 16.03.30.14 - Info Disclosure

CVE-2025-3395 HIGH

ABB Automation Builder <2.8.0 - Info Disclosure

CVE-2025-27532 MEDIUM

Bosch Rexroth ctrlX OS 1.12.0-1.12.8/1.20.0-1.20.6 Authenticated Cleartext Storage of Sensitive Information

CVE-2025-2770 MEDIUM

BEC Technologies Router Firmware - Authenticated Cleartext Storage of Sensitive Information in Web Interface

CVE-2025-0123 MEDIUM

Palo Alto Networks PAN-OS - Info Disclosure

CVE-2025-3442 MEDIUM

TP-Link Tapo H200 V1 - Info Disclosure

CVE-2025-0418 MEDIUM

Valmet DNA >=C2007 <C2021 - Cleartext Storage of Sensitive Information

CVE-2025-2922 LOW

Netis WF-2404 1.1.124EN - Info Disclosure

CVE-2025-2909 MEDIUM

Fermax DuoxMe iOS application < 3.3.1 - Cleartext Storage of Sensitive Information

CVE-2025-25758 HIGH

KukuFM 1.12.7 - Cleartext Storage of Sensitive Information via Android Backup

CVE-2025-2189 MEDIUM

Tinxy Smart Devices - Info Disclosure

CVE-2025-2120 LOW

Thinkware Car Dashcam F800 Pro <20250226 - Info Disclosure

CVE-2025-27623 MEDIUM

Jenkins < 2.492.2 and < 2.500 - Cleartext Storage of Sensitive Information in View Config

CVE-2025-27622 MEDIUM

Jenkins < 2.492.2, 2.493-2.499 - Cleartext Storage of Sensitive Information in Agent config.xml

CVE-2025-27685 HIGH

Vasion Print < 20.0.1330 and Virtual Appliance < 1.0.735 - Cleartext Storage of Sensitive Information

CVE-2025-22896 HIGH

mySCADA myPRO Manager Credential Harvester (CVE-2025-24865 and CVE-2025-22896)

Previous Page 6 of 33 Next

Details

Vulnerabilities 804

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy