CWE-319

High likelihood

Cleartext Transmission of Sensitive Information

Parent: CWE-311 - Missing Encryption of Sensitive Data

The product transmits sensitive or security-critical data in cleartext in a communication channel that can be sniffed by unauthorized actors.

882 vulnerabilities with CWE-319
CVE-2021-27574 HIGH
Emote Remote Mouse <4.0.0.0 - Man-In-The-Middle
CVSS 8.1
CVE-2021-27569 MEDIUM
Emote Remote Mouse <4.0.0.0 - Info Disclosure
CVSS 5.3
CVE-2021-31815 LOW
Google/Apple Exposure Notifications < 2021-04-27 - Cleartext Transmission of Sensitive Information via System Log
CVSS 3.3
CVE-2021-31671 HIGH
pgsync < 0.6.7 - Information Disclosure via Schema Sync Mishandling
CVSS 7.5
CVE-2021-3494 MEDIUM
Foreman < 2.5.0 - Unauthenticated Man-in-the-Middle Attack via FreeIPA Module
CVSS 5.9
CVE-2021-20992 HIGH
Fibaro Home Center - Info Disclosure
CVSS 8.1
CVE-2021-23884 MEDIUM
McAfee Content Security Reporter < 2.8.0 - Cleartext Transmission of Sensitive Information
CVSS 4.3
CVE-2021-27251 HIGH
NETGEAR Router/Extender Firmware - Unauthenticated RCE via Insecure Update
CVSS 8.8
CVE-2021-3473 MEDIUM
Lenovo XClarity Controller - Cleartext Transmission of Sensitive Information in FFDC Service Log
CVSS 4.5
CVE-2021-27194 HIGH
Netop Vision Pro <= 9.7.1 - Unauthenticated Cleartext Transmission of Sensitive Information
CVSS 8.8
CVE-2021-21387 HIGH
Wrongthink <2.3.0 - Info Disclosure
CVSS 8.1
CVE-2021-3417 MEDIUM
Lenovo XClarity Orchestrator < 1.2.2 - Cleartext Transmission of Sensitive Information in FFDC Service Log
CVSS 4.9
CVE-2021-26565 HIGH
Synology DiskStation Manager < 6.2.3-25426-3 - Cleartext Transmission of Sensitive Information via HTTP Session
CVSS 8.3
CVE-2021-26564 HIGH
Synology DiskStation Manager < 6.2.3-25426-3 - Cleartext Transmission of Sensitive Information via synorelayd
CVSS 8.3
CVE-2021-26560 CRITICAL
Synology DiskStation Manager < 6.2.3-25426-3 - Cleartext Transmission of Sensitive Information via synoagentregisterd
CVSS 9.0
CVE-2021-22703 HIGH
Schneider Electric PowerLogic ION and PM8000 Firmware - Cleartext Transmission of Sensitive Information
CVSS 7.5
CVE-2021-22702 HIGH
PowerLogic ION/PM8000 Cleartext Transmission of Sensitive Information via Telnet
CVSS 7.5
CVE-2021-27209 HIGH
TP-Link Archer C5v 1.7_181221 - Cleartext Transmission of Sensitive Information via Base64-Encoded Credentials
CVSS 7.1
CVE-2021-20409 MEDIUM
IBM Security Verify Information Queue <1.0.7 - Info Disclosure
CVSS 5.9
CVE-2021-20335 MEDIUM
MongoDB Ops Manager <4.2.24-4.4.12 - Info Disclosure
CVSS 6.7
CVE-2021-20623 CRITICAL
Panasonic Video Insight VMS < 7.8 - Remote Code Execution
CVSS 9.8
CVE-2021-21270 MEDIUM
OctopusDSC <4.0.1002 - Info Disclosure
CVSS 6.2
CVE-2020-36917 HIGH
iDS6 DSSPro Digital Signage System 6.2 - Info Disclosure
CVSS 7.5
CVE-2020-36914 HIGH
QiHang Media Web Digital Signage 3.0.9 - Info Disclosure
CVSS 7.5
CVE-2020-4497 MEDIUM
IBM Spectrum Protect Plus 10.1.0-10.1.12 - Cleartext Transmission of Sensitive Information
CVSS 6.8
Details
Vulnerabilities 882
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits