CWE-319

High likelihood

Cleartext Transmission of Sensitive Information

Parent: CWE-311 - Missing Encryption of Sensitive Data

The product transmits sensitive or security-critical data in cleartext in a communication channel that can be sniffed by unauthorized actors.

884 vulnerabilities with CWE-319
CVE-2019-4594 MEDIUM
IBM QRadar <7.3.3 Patch 2 - Info Disclosure
CVSS 5.9
CVE-2019-19127 HIGH
Tribal SITS:Vision 9.7.0 - Cleartext Transmission of Sensitive Information
CVSS 8.1
CVE-2019-16063 HIGH
NETSAS Enigma NMS <65.0.0 - Info Disclosure
CVSS 7.5
CVE-2019-16067 HIGH
NETSAS Enigma NMS <65.0.0 - Info Disclosure
CVSS 7.5
CVE-2019-12122 MEDIUM
ONAP Portal 3.0.0-4.0.0 - Cleartext Transmission of Sensitive Information via Logged-in User API
CVSS 6.5
CVE-2019-13394 CRITICAL
NETGEAR CG3700b Firmware V2.02.03 - Cleartext Transmission of Sensitive Information via HTTP Basic Authentication
CVSS 9.8
CVE-2019-5107 HIGH
WAGO e!Cockpit <1.5.1.1 - Info Disclosure
CVSS 7.5
CVE-2019-9101 HIGH
Moxa MB3170/MB3270 <4.0, MB3180 <2.0, MB3280/MB3480 <3.0, MB3660 <2.2 - Cleartext Transmission of Sensitive Information
CVSS 7.5
CVE-2019-20061 HIGH
MFScripts YetiShare 3.5.2-4.5.4 - Cleartext Transmission of Sensitive Information via User-Introduction Email
CVSS 7.5
CVE-2019-19898 HIGH
IXP EasyInstall 6.2.13723 - Cleartext Transmission of Sensitive Information via Administrator Console
CVSS 7.5
CVE-2019-12399 HIGH
Apache Kafka <2.3.0 - Info Disclosure
CVSS 7.5
CVE-2019-16274 HIGH
DTEN D5 <1.3, D7 <1.3 - Info Disclosure
CVSS 7.5
CVE-2019-19967 HIGH
UPC Connect Box EuroDOCSIS Firmware - Cleartext Transmission of Sensitive Information via Password Field
CVSS 7.5
CVE-2019-4743 MEDIUM
IBM Financial Transaction Manager 3.0 - Open Redirect
CVSS 4.3
CVE-2019-15911 CRITICAL
ASUS HG100/MW100/WS-101/TS-101/AS-101/MS-101/DL-101 Firmware - Cleartext Sensitive Info via ZigBee PRO
CVSS 9.8
CVE-2019-19890 HIGH
Humax Wireless Voice Gateway HGB10R-2 20160817_1855 - Cleartext Transmission of Sensitive Information
CVSS 7.5
CVE-2019-19889 HIGH
Humax Wireless Voice Gateway HGB10R-2 20160817_1855 - Cleartext Transmission of Sensitive Information in Backup File
CVSS 7.5
CVE-2019-8632 MEDIUM
Texture < 4.22.0.4 (Android) and < 5.11.10 (iOS) - Cleartext Transmission of Sensitive Analytics Data
CVSS 6.5
CVE-2019-3993 HIGH
elog < 3.1.4-57bea22 - Unauthenticated Cleartext Transmission of Sensitive Information via HTTP POST Request
CVSS 7.5
CVE-2019-3992 HIGH
ELOG < 3.1.4-57bea22 - Unauthenticated Information Disclosure via Configuration File Access
CVSS 7.5
CVE-2019-16568 MEDIUM
Jenkins SCTMExecutor Plugin <2.2 - Info Disclosure
CVSS 5.3
CVE-2019-16732 HIGH
Petalk AI and PF-103 Firmware - Unencrypted Firmware Upgrade Transmission
CVSS 8.1
CVE-2019-18285 MEDIUM
SPPA-T3000 Application Server < R8.2 SP2 - Cleartext Transmission of Sensitive Information via RMI Communication
CVSS 5.9
CVE-2019-19251 MEDIUM
Last.fm Scrobbler <2.1.39 - Info Disclosure
CVSS 5.3
CVE-2019-16672 CRITICAL
Weidmueller IE-SW-VL05M <3.6.6 - Info Disclosure
CVSS 9.8
Details
Vulnerabilities 884
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits