CWE-319

High likelihood

Cleartext Transmission of Sensitive Information

Parent: CWE-311 - Missing Encryption of Sensitive Data

The product transmits sensitive or security-critical data in cleartext in a communication channel that can be sniffed by unauthorized actors.

882 vulnerabilities with CWE-319
CVE-2023-50962 MEDIUM
IBM PowerSC 1.3, 2.0, and 2.1 - Cleartext Transmission of Sensitive Information
CVSS 5.9
CVE-2023-46889 MEDIUM
Meross MSH30Q <4.5.23 - Info Disclosure
CVSS 5.7
CVE-2023-42144 MEDIUM
Shelly TRV Firmware 2.1.8 - Cleartext Transmission of Sensitive Information during Initial Setup
CVSS 5.5
CVE-2023-46447 MEDIUM
POPS! Rebel 5.0 - Cleartext Transmission of Sensitive Information via BLE
CVSS 4.3
CVE-2023-50614 HIGH
EBYTE E880-IR01-V1.1 - Cleartext Transmission of Sensitive Information via /cgi-bin/luci
CVSS 7.5
CVE-2023-51741 HIGH
Skyworth Router CM5100 <4.1.1.24 - Info Disclosure
CVSS 7.5
CVE-2023-51740 HIGH
Skyworth Router CM5100 <4.1.1.24 - Info Disclosure
CVSS 7.5
CVE-2023-6094 MEDIUM
OnCell G3150A-LTE Series <1.3 - Info Disclosure
CVSS 5.3
CVE-2023-31300 HIGH
Sesami CPTO <6.3.8.6 - Info Disclosure
CVSS 7.5
CVE-2023-34829 MEDIUM
TP-Link Tapo < 3.1.315 - Unauthenticated Cleartext Transmission of Sensitive Information
CVSS 6.5
CVE-2023-28616 HIGH
Stormshield Network Security <4.3.17, 4.4.x-4.6.x<4.6.4, 4.7.x<4.7....
CVSS 7.5
CVE-2023-51390 MEDIUM
journalpump <2.5.0 - Info Disclosure
CVSS 6.5
CVE-2023-50703 MEDIUM
efacec UC_500E Firmware - Cleartext Transmission of Sensitive Information
CVSS 6.3
CVE-2023-39172 CRITICAL
Enbw Senec Storage Box Firmware - Information Disclosure
CVSS 9.1
CVE-2023-24547 MEDIUM
Arista MOS 0.13.0-0.39.3 - Authenticated Cleartext Transmission of Sensitive Information in BGP Password Logging
CVSS 5.9
CVE-2023-42579 MEDIUM
Samsung Keyboard < 5.3.70.1 - Cleartext Transmission of Sensitive Information via HTTP
CVSS 6.5
CVE-2023-46385 HIGH
LOYTEC electronics GmbH LINX Configurator - Privilege Escalation
CVSS 7.5
CVE-2023-46383 HIGH
LOYTEC electronics GmbH LINX Configurator - Auth Bypass
CVSS 7.5
CVE-2023-6248 CRITICAL
Digital Communications Syrus4 IoT Gateway - Unsecured MQTT Code Execution
CVSS 10.0
CVE-2023-43503 LOW
COMOS < 10.4.4 - Cleartext Transmission of Sensitive Information via UDP
CVSS 3.5
CVE-2023-46382 HIGH
LOYTEC LINX-212, LVIS-3ME12-A1, LIOB-586 Firmware - Cleartext Transmission of Sensitive Information via HTTP Login
CVSS 7.5
CVE-2023-46380 HIGH
LOYTEC LINX-212, LVIS-3ME12-A1, LIOB-586 Firmware - Cleartext Transmission of Sensitive Information
CVSS 7.5
CVE-2023-5035 LOW
Moxa EDS-G503 Firmware < 5.2 - Cleartext Transmission of Sensitive Information via Unsecured Cookie Attribute
CVSS 3.1
CVE-2023-45321 HIGH
Bosch Rexroth ctrlX HMI Web Panel WR2107/WR2110/WR2115 - Cleartext Transmission of Sensitive Information
CVSS 8.3
CVE-2023-33837 MEDIUM
IBM Security Verify Governance 10.0 - Info Disclosure
CVSS 4.1
Details
Vulnerabilities 882
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits