Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-522

CWE-522

Insufficiently Protected Credentials

Parent: CWE-1390 - Weak Authentication

The product transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval.

1,358 vulnerabilities with CWE-522

CVE-2024-37362 MEDIUM

Hitachi Vantara Pentaho Data Integration & Analytics <10.2.0.0-9.3....

CVE-2024-43779 HIGH

ClearML Enterprise Server 3.22.5-1533 - Information Disclosure via Vault API

CVE-2024-12511 HIGH

Xerox VersaLink - Unauthenticated SMB/FTP Settings Modification via Address Book Access

CVE-2024-57395 CRITICAL

Safety production process management system 1.0 - Privilege Escalation

CVE-2024-23733 HIGH

Software AG webMethods <10.15.0 - Info Disclosure

CVE-2024-42012 MEDIUM

GRAU DATA Blocky <3.1 - Info Disclosure

CVE-2024-46480 HIGH

Venki Supravizio BPM < 18.0.1 - Authenticated NTLM Hash Leak

CVE-2024-42172 MEDIUM

HCL MyXalytics - Insufficiently Protected Credentials

CVE-2024-56354 MEDIUM

JetBrains TeamCity < 2024.12 - Insufficiently Protected Credentials

CVE-2024-49817 MEDIUM

IBM Security Guardium Key Lifecycle Manager <4.2.1 - Info Disclosure

CVE-2024-54471 MEDIUM

macOS < 13.7.1, < 14.7.1, < 15.1 - Unprotected User Credential Exposure

CVE-2024-53292 HIGH

Dell VxVerify <x.40.405 - Info Disclosure

CVE-2024-46341 HIGH

TP-Link TL-WR845N(UN)_V4_190219 - Insufficiently Protected Credentials via Base64 Encoding

CVE-2024-50699 HIGH

TP-Link TL-WR845N Firmware - Insufficiently Protected Credentials

CVE-2024-53832 MEDIUM

Siemens CPCI85 Central Processing/Communication < V05.30 - Insufficiently Protected Credentials via Unencrypted SPI Bus

CVE-2024-40583 CRITICAL

Pentaminds CuroVMS v2.0.1 - Info Disclosure

CVE-2024-51546 HIGH

ABB ASPECT Enterprise, NEXUS Series, MATRIX Series <3.08.02 - Credentials Disclosure

CVE-2024-51545 CRITICAL

ABB ASPECT <3.08.02-NEXUS Series <3.08.02-MATRIX Series <3.08.02 - ...

CVE-2024-42457 MEDIUM

Veeam Backup & Replication - Info Disclosure

CVE-2024-11856 LOW

HPE IceWall Gen11 < Patch Release 14 and IceWall SSO < Patch Release 10 - Unauthorized Data Modification

CVE-2024-11703 MEDIUM

Firefox < 133.0 on Android - Insufficiently Protected Credentials

CVE-2024-6749 MEDIUM

Axis Camera Station Pro - Info Disclosure

CVE-2024-47142 MEDIUM

AIPHONE IXG SYSTEM <2.03 - Privilege Escalation

CVE-2024-39290 MEDIUM

AIPHONE IX SYSTEM - Info Disclosure

CVE-2024-47588 MEDIUM

SAP NetWeaver Java - Info Disclosure

Previous Page 10 of 55 Next

Details

Vulnerabilities 1,358

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy