Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-312

CWE-312

Cleartext Storage of Sensitive Information

Parent: CWE-311 - Missing Encryption of Sensitive Data

The product stores sensitive information in cleartext within a resource that might be accessible to another control sphere.

804 vulnerabilities with CWE-312

CVE-2025-26495 HIGH

Tableau Server < 2020.4.19 - Cleartext Storage of Sensitive Information in Logging Repositories

CVE-2025-23215 CRITICAL

PMD and PMD Designer - Exposure of Sensitive Information via Release Signing Key Passphrase

CVE-2025-0142 MEDIUM

Zoom Jenkins Marketplace <1.4 - Info Disclosure

CVE-2025-23027 MEDIUM

next-forge < 3.0.11 - Cleartext Storage of Sensitive Information in .env.example

CVE-2024-55027 HIGH

Weintek cMT-3072XH2 v2.1.53 - Info Disclosure

CVE-2024-9432 MEDIUM

OpenText Vertica <25.X - Info Disclosure

CVE-2024-58277 HIGH

R Radio Network FM Transmitter 1.07 - Info Disclosure

CVE-2024-52284 HIGH

Rancher Fleet BundleDeployment - Information Disclosure via Helm Values

CVE-2024-24915 MEDIUM

Check Point SmartConsole - Cleartext Storage of Sensitive Information in Memory

CVE-2024-47056 MEDIUM

Mautic 4.4.0-4.4.15 - Unauthenticated Sensitive Information Disclosure via .env File Exposure

CVE-2024-56428 MEDIUM

itech iLabClient <3.7.1 - Info Disclosure

CVE-2024-23942 HIGH

Client Workstation - Info Disclosure

CVE-2024-12604 MEDIUM

Tap&Sign App <V.1.025 - Info Disclosure

CVE-2024-10404 MEDIUM

Brocade SANnav < 2.3.1b - Authenticated Cleartext Storage of Sensitive Information in CalInvocationHandler

CVE-2024-13843 MEDIUM

Ivanti Connect Secure < 22.7R2.6 & Policy Secure < 22.7R1.3 - Sensitive Data Exposure via Cleartext Storage

CVE-2024-53651 MEDIUM

SIPROTEC 5 - Cleartext Storage of Sensitive Information in On-Board Flash Storage

CVE-2024-45718 MEDIUM

Configuration File - Info Disclosure

CVE-2024-49800 MEDIUM

IBM ApplinX 11.1 - Authenticated Cleartext Storage of Sensitive Information in Memory

CVE-2024-55928 MEDIUM

Xerox Workplace Suite - Info Disclosure

CVE-2024-12079 LOW

ECOVACS Robot Lawnmowers - Cleartext Storage of Anti-Theft PIN

CVE-2024-46505 CRITICAL

Infoblox BloxOne v2.4 - Info Disclosure

CVE-2024-56362 HIGH

navidrome < 0.54.1 - Cleartext Storage of JWT Secret in Database

CVE-2024-55196 HIGH

gophish v0.12.1 - Cleartext Storage of Sensitive Information in Mail Server Configuration

CVE-2024-50570 MEDIUM

FortiClient 7.0.0-7.0.13, 7.2.0-7.2.6, 7.4.0-7.4.1 - Cleartext Storage of VPN Password

CVE-2024-51175 HIGH

H3C switch h3c-S1526 - Info Disclosure

Previous Page 7 of 33 Next

Details

Vulnerabilities 804

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy