CWE-319

High likelihood

Cleartext Transmission of Sensitive Information

Parent: CWE-311 - Missing Encryption of Sensitive Data

The product transmits sensitive or security-critical data in cleartext in a communication channel that can be sniffed by unauthorized actors.

884 vulnerabilities with CWE-319
CVE-2017-20200 LOW
Coinomi < 1.7.6 - Cleartext Transmission of Sensitive Information
CVSS 3.7
CVE-2017-7252 HIGH
Botan 1.11.0-2.0.0 - Cleartext Transmission of Sensitive Information via bcrypt Password Hashing
CVSS 7.5
CVE-2017-20109 MEDIUM
Teleopti WFM <7.1.0 - Info Disclosure
CVSS 4.3
CVE-2017-16041 MEDIUM
ikst < 1.1.2 - Cleartext Transmission of Sensitive Information via HTTP Resource Download
CVSS 5.9
CVE-2017-16040 HIGH
gfe-sass < 1.0.19 - Cleartext Transmission of Sensitive Information
CVSS 8.1
CVE-2017-16035 HIGH
hubl-server < 1.1.5 - Cleartext Transmission of Sensitive Information via HTTP Redirect
CVSS 8.1
CVE-2017-9637 MEDIUM
Schneider Electric Ampla MES <6.5 - Info Disclosure
CVSS 4.1
CVE-2017-12716 MEDIUM
Abbott Accent and Anthem Pacemakers - Cleartext Transmission of Sensitive Information via RF Communications
CVSS 6.5
CVE-2017-8154 MEDIUM
Honor 8 Lite Firmware < Prague-L31C530B160 - Cleartext Transmission of Sensitive Information via Theme Download
CVSS 5.3
CVE-2017-12310 HIGH
Cisco Spark Hybrid Calendar Service - Info Disclosure
CVSS 7.5
CVE-2017-0925 HIGH
Gitlab EE <10.1.0 - Info Disclosure
CVSS 7.2
CVE-2017-17844 MEDIUM
Enigmail < 1.9.9 - Cleartext Transmission of Sensitive Information via Quoted Text Replay
CVSS 6.5
CVE-2017-5259 HIGH
Cambium Networks cnPilot <4.3.2-R4 - Privilege Escalation
CVSS 8.8
CVE-2017-1694 HIGH
IBM Integration Bus <10.0 - Info Disclosure
CVSS 8.1
CVE-2017-14486 HIGH
Vibease Wireless Remote Vibrator & Chat - Info Disclosure
CVSS 7.5
CVE-2017-15999 CRITICAL
NQ Contacts Backup & Restore 1.1 - Cleartext Transmission of Sensitive Information
CVSS 9.8
CVE-2017-1232 MEDIUM
IBM BigFix Platform 9.2 and 9.5 - Cleartext Transmission of Sensitive Information
CVSS 5.9
CVE-2017-7147 MEDIUM
Apple Support app <1.2 - Info Disclosure
CVSS 5.3
CVE-2017-7143 MEDIUM
Apple macOS <10.13 - Info Disclosure
CVSS 5.5
CVE-2017-7133 HIGH
iPhone OS < 10.3.3 - Cleartext Transmission of Sensitive Information in MobileBackup
CVSS 7.5
CVE-2017-7078 MEDIUM
iPhone OS < 10.3.3 and macOS < 10.12.6 - Cleartext Transmission of Sensitive Information in Mail Drafts
CVSS 5.3
CVE-2017-14009 MEDIUM
ProMinent MultiFLEX M10a - Info Disclosure
CVSS 6.5
CVE-2017-15290 HIGH
Mirasys Video Management System 6.x < 6.4.6, 7.x < 7.5.15, 8.x < 8.1.1 - Cleartext Transmission of Sensitive Information
CVSS 7.5
CVE-2017-15042 MEDIUM
GO < 1.8.3 - Cleartext Transmission
CVSS 5.9
CVE-2017-8444 MEDIUM
Elastic Cloud Enterprise < 1.0.2 - Cleartext Transmission of Sensitive Information to ZooKeeper
CVSS 5.9
Details
Vulnerabilities 884
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits