CWE-319

High likelihood

Cleartext Transmission of Sensitive Information

Parent: CWE-311 - Missing Encryption of Sensitive Data

The product transmits sensitive or security-critical data in cleartext in a communication channel that can be sniffed by unauthorized actors.

882 vulnerabilities with CWE-319

CVE-2025-42603 HIGH

Meon KYC solutions - Authenticated Cleartext Transmission of Sensitive Information in API Response Payloads

CVE-2025-32793 MEDIUM

Cilium 1.15.0-1.15.15, 1.16.0-1.16.8, 1.17.0-1.17.2 - Cleartext Transmission via WireGuard Race Condition

CVSS 4.0

CVE-2025-43013 MEDIUM

JetBrains Toolbox App <2.6 - Info Disclosure

CVSS 6.9

CVE-2025-43704 MEDIUM

Arctera/Veritas Data Insight <7.1.2 - Info Disclosure

CVSS 4.7

CVE-2025-27722 MEDIUM

Wi-Fi AP UNIT AC-WPS-11ac - Info Disclosure

CVSS 5.9

CVE-2025-26654 MEDIUM

SAP Commerce Cloud - Info Disclosure

CVSS 6.8

CVE-2025-3329 LOW

Consumer Comanda Mobile <15.0.0.8 - Info Disclosure

CVSS 3.1

CVE-2025-2861 HIGH

SaTECH BCU Firmware 2.1.3 - Cleartext Transmission of Sensitive Information via HTTP

CVSS 7.5

CVE-2025-2311 CRITICAL

SecHard <3.3.0.20220411 - Privilege Escalation

CVSS 9.0

CVE-2025-27594 HIGH

SICK DL100-2xxxxxxx - Cleartext Transmission of Sensitive Information via Unencrypted Proprietary Protocol

CVSS 7.5

CVE-2025-22493 MEDIUM

Foreseer Reporting Software <1.5.100 - Info Disclosure

CVSS 5.6

CVE-2025-24849 HIGH

Cloud Infrastructure - Info Disclosure

CVSS 7.1

CVE-2025-25728 MEDIUM

Bosscomm IF740 Firmware <11001.7078-11001.0000 - Info Disclosure

CVSS 6.5

CVE-2025-1060 HIGH

Schneider Electric ASCO 5310 and 5350 - Cleartext Transmission of Sensitive Information

CVSS 7.5

CVE-2025-0556 HIGH

Telerik Report Server <2025 Q1 (11.0.25.211) - Info Disclosure

CVSS 8.8

CVE-2025-23060 MEDIUM

Aruba ClearPass Policy Manager 6.11.0-6.11.9 - Cleartext Transmission of Sensitive Information

CVSS 6.6

CVE-2025-0784 LOW

Intelbras InControl <2.21.58 - Info Disclosure

CVSS 3.7

CVE-2025-0631 HIGH

Rockwell Automation PowerFlex 755 <= 16.002.279 - Cleartext Transmission of Sensitive Information via HTTP

CVE-2025-0432 MEDIUM

Ewon Flexy 202 - Cleartext Transmission of Sensitive Information via Webpage

CVSS 5.7

CVE-2024-47269 MEDIUM

Synology Surveillance Station - Cleartext Transmission of Sensitive Information

CVSS 4.9

CVE-2024-43766 MEDIUM

Android - Cleartext Transmission of Sensitive Information via Invalid Error Handling in btm_ble_sec.cc

CVSS 6.5

CVE-2024-48894 MEDIUM

Socomec DIRIS Digiware M-70 1.6.9 - Cleartext Transmission of Sensitive Information via WEBVIEW-M

CVSS 5.9

CVE-2024-32384 MEDIUM

Kerlink gateway <5.10 - Info Disclosure

CVSS 6.8

CVE-2024-12378 CRITICAL

Arista CloudVision Portal 4.27.0-4.32.1F - Cleartext Transmission of Sensitive Information

CVSS 9.1

CVE-2024-45361 MEDIUM

Xiaomi Mi Connect Service APP - Info Disclosure

CVSS 6.5

Details

Vulnerabilities 882

Exploit Likelihood High

Links