CWE-319

High likelihood

Cleartext Transmission of Sensitive Information

Parent: CWE-311 - Missing Encryption of Sensitive Data

The product transmits sensitive or security-critical data in cleartext in a communication channel that can be sniffed by unauthorized actors.

884 vulnerabilities with CWE-319
CVE-2019-10101 HIGH
JetBrains Kotlin <1.3.30 - Info Disclosure
CVSS 8.1
CVE-2019-6640 MEDIUM
F5 Big-ip Local Traffic Manager < 11.5.9 - Cleartext Transmission
CVSS 5.3
CVE-2019-3619 MEDIUM
McAfee ePolicy Orchestrator 5.9.x/5.10.0 < Update 4 - Cleartext Transmission of Sensitive Information
CVSS 6.8
CVE-2019-12781 MEDIUM
Django 1.11-1.11.21, 2.1-2.1.9, 2.2-2.2.2 - Cleartext Transmission of Sensitive Information
CVSS 5.3
CVE-2019-4382 MEDIUM
IBM API Connect <5.0.8.6 - Info Disclosure
CVSS 5.3
CVE-2019-12813 MEDIUM
Digital Persona U.are.U 4500 Fingerprint Reader v24 - Cleartext Transmission of Sensitive Fingerprint Data
CVSS 5.9
CVE-2019-10926 MEDIUM
SIMATIC MV400 family < V7.0.6 - Cleartext Transmission of Sensitive Information
CVSS 5.3
CVE-2019-12506 HIGH
Logitech R700 Laser Presentation Remote Firmware - Keystroke Injection via Unencrypted Communication
CVSS 8.8
CVE-2019-12505 HIGH
Inateck WP1001 Firmware v1.3C - Keystroke Injection via Unencrypted Communication
CVSS 8.8
CVE-2019-12504 HIGH
Inateck WP2002 Firmware - Keystroke Injection via Unencrypted Communication
CVSS 8.8
CVE-2019-4162 HIGH
IBM Security Information Queue 1.0.0-1.0.2 - Cleartext Transmission of Sensitive Information
CVSS 7.5
CVE-2019-5496 HIGH
NetApp OnCommand Insight < 7.3.5 - Cleartext Transmission of Sensitive Information
CVSS 7.5
CVE-2019-5494 HIGH
OnCommand Unified Manager 7-Mode < 5.2.4 - Cleartext Transmission of Sensitive Information
CVSS 7.5
CVE-2019-6613 MEDIUM
BIG-IP 11.5.2-11.5.8, 11.6.1-11.6.3.4, 12.1.0-12.1.4, 13.0.0-13.1.1.4 - SNMPv2 Cleartext Transmission
CVSS 5.3
CVE-2019-11220 HIGH
Shenzhen Yunni Technology iLnkP2P - Cleartext Transmission of Sensitive Information
CVSS 8.1
CVE-2019-3801 CRITICAL
Cloud Foundry cf-deployment < 7.9.0 - Cleartext Transmission of Sensitive Information
CVSS 9.8
CVE-2019-3793 CRITICAL
Pivotal Apps Manager <=667.0.6 - Unauthenticated Cleartext Transmission of Sensitive Information
CVSS 9.8
CVE-2019-6526 CRITICAL
Moxa IKS-G6824A < 4.5, EDS-405A < 3.8, EDS-408A < 3.8, EDS-510A < 3.8 - Cleartext Transmission of Sensitive Information
CVSS 9.8
CVE-2019-10740 MEDIUM
Opensuse Leap < 1.3.10 - Cleartext Transmission
CVSS 4.3
CVE-2019-10735 MEDIUM
Claws Mail 3.14.1 - Cleartext Transmission of Sensitive Information via Crafted Multipart Email Reply
CVSS 4.3
CVE-2019-10734 MEDIUM
KDE Trojita 0.7 - Cleartext Transmission of Sensitive Information via Multipart Email Reply
CVSS 4.3
CVE-2019-10732 MEDIUM
KDE KMail - Cleartext Transmission of Sensitive Information via Crafted Multipart Email Reply
CVSS 4.3
CVE-2019-10240 HIGH
Eclipse hawkBit < 0.3.0M2 - Cleartext Transmission of Sensitive Information via Maven Build Artifacts
CVSS 8.1
CVE-2019-1010260 HIGH
ktlint < 0.30.0 - Remote Code Execution via MITM of HTTP Ruleset Download
CVSS 8.1
CVE-2019-10251 MEDIUM
UC Browser < 2019-03-26 - Cleartext Transmission of Sensitive Information via Module Download
CVSS 5.9
Details
Vulnerabilities 884
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits