CWE-319

High likelihood

Cleartext Transmission of Sensitive Information

Parent: CWE-311 - Missing Encryption of Sensitive Data

The product transmits sensitive or security-critical data in cleartext in a communication channel that can be sniffed by unauthorized actors.

884 vulnerabilities with CWE-319
CVE-2020-10376 CRITICAL
Technicolor TC7337NET 08.89.17.23.03 - Cleartext Transmission of Sensitive Information via HTTP Basic Auth
CVSS 9.8
CVE-2020-6198 CRITICAL
SAP Solution Manager <720 - Unauthenticated RCE
CVSS 9.8
CVE-2020-2157 MEDIUM
Jenkins Skytap Cloud CI Plugin <= 2.07 - Cleartext Transmission of Sensitive Credentials
CVSS 4.3
CVE-2020-2156 MEDIUM
Jenkins DeployHub Plugin <= 8.0.14 - Cleartext Transmission of Sensitive Credentials
CVSS 4.3
CVE-2020-2155 MEDIUM
Jenkins OpenShift Deployer Plugin <= 1.2.0 - Cleartext Transmission of Sensitive Credentials
CVSS 5.3
CVE-2020-2153 MEDIUM
Jenkins Backlog Plugin < 2.4 - Cleartext Transmission of Sensitive Credentials
CVSS 4.3
CVE-2020-2151 MEDIUM
Jenkins Quality Gates Plugin < 2.5 - Cleartext Transmission of Sensitive Information in Global Configuration Form
CVSS 5.3
CVE-2020-2150 MEDIUM
Jenkins Sonar Quality Gates Plugin < 1.3.1 - Cleartext Transmission of Sensitive Credentials
CVSS 5.3
CVE-2020-2149 MEDIUM
Jenkins Repository Connector Plugin < 1.2.6 - Cleartext Transmission of Sensitive Credentials
CVSS 5.3
CVE-2020-2143 MEDIUM
Jenkins Logstash Plugin < 2.3.1 - Cleartext Transmission of Sensitive Credentials
CVSS 5.3
CVE-2020-9550 CRITICAL
Rubetek SmartHome 2020 - Cleartext Transmission of Sensitive Information via 433 MHz Communication
CVSS 9.8
CVE-2020-9477 CRITICAL
HUMAX HGA12R-02 Firmware 1.1.53 - Unauthenticated Cleartext Password Transmission
CVSS 9.8
CVE-2020-3841 MEDIUM
iOS <13.3.1-iPadOS <13.3.1 - Info Disclosure
CVSS 6.5
CVE-2020-7907 HIGH
JetBrains Scala <2019.2.1 - Info Disclosure
CVSS 7.5
CVE-2020-5399 HIGH
Cloud Foundry CredHub < 2.5.10 - Cleartext Transmission of Sensitive Information via MySQL Database Connection
CVSS 7.4
CVE-2020-8507 HIGH
Citytv Video <4.08.0-3.35 - Info Disclosure
CVSS 7.5
CVE-2020-8506 MEDIUM
Global TV <2.3.2, <4.7.5 - Info Disclosure
CVSS 5.3
CVE-2020-7984 HIGH
SolarWinds N-central <12.1 SP1 HF5-12.2 SP1 HF2 - Info Disclosure
CVSS 7.5
CVE-2019-25278 MEDIUM
FaceSentry Access Control System <6.4.8 - Info Disclosure
CVSS 5.9
CVE-2019-14942 MEDIUM
GitLab < 11.11.8, 12 < 12.0.6, 12.1 < 12.1.6 - Cleartext Transmission of Sensitive Information via GitLab Pages Cookies
CVSS 5.9
CVE-2019-18231 HIGH
Advantech Spectre RT ERT351 Firmware <= 5.1.3 - Cleartext Transmission of Sensitive Information
CVSS 7.5
CVE-2019-4689 HIGH
IBM Security Guardium Data Encryption (GDE) 3.0.0.2 - Info Disclosure
CVSS 7.5
CVE-2019-18248 MEDIUM
BIOTRONIK CardioMessenger II-S GSM and T-Line Firmware - Cleartext Transmission of Sensitive Credentials
CVSS 4.3
CVE-2019-4667 MEDIUM
IBM UrbanCode Deploy (UCD) 7.0.5.2 - Info Disclosure
CVSS 5.9
CVE-2019-19107 MEDIUM
ABB Telephone Gateway TG/S <3.2 - Info Disclosure
CVSS 6.2
Details
Vulnerabilities 884
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits