Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-522

CWE-522

Insufficiently Protected Credentials

Parent: CWE-1390 - Weak Authentication

The product transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval.

1,360 vulnerabilities with CWE-522

CVE-2023-1137 MEDIUM

InfraSuite Device Master < 1.0.5 - Insufficiently Protected Credentials

CVE-2023-25686 MEDIUM

IBM Security Guardium Key Lifecycle Manager 3.0, 3.0.1, 4.0, 4.1, and 4.1.1 - Insufficiently Protected Credentials

CVE-2023-0457 HIGH

Mitsubishi Electric Corporation MELSEC - Info Disclosure

CVE-2023-24498 HIGH

Unspecified Web Server - Info Disclosure

CVE-2023-23466 MEDIUM

Media Control Panel - Insufficiently Protected Credentials

CVE-2023-23463 MEDIUM

Sunellsecurity Sn-xvr3804e1 Firmware - Insufficiently Protected Cre...

CVE-2023-25191 HIGH

AMI MegaRAC SP-X - Unauthenticated Password Disclosure via Redfish

CVE-2023-24619 MEDIUM

Redpanda <22.3.12 - Info Disclosure

CVE-2022-33954 MEDIUM

IBM Robotic Process Automation <21.0.4 - Info Disclosure

CVE-2022-45157 CRITICAL

Rancher 2.7.0-2.8.8 and 2.9.0-2.9.2 - Insufficiently Protected vSphere CPI and CSI Credentials

CVE-2022-47037 HIGH

Siklu TG Terragraph <2.1.1 - Info Disclosure

CVE-2022-34311 MEDIUM

IBM CICS TX 11.1 - Insufficiently Protected Credentials

CVE-2022-38714 MEDIUM

IBM DataStage on Cloud Pak for Data <4.5.2 - Info Disclosure

CVE-2022-39820 MEDIUM

Nokia Network Functions Manager for Transport R19.9 - Unprotected Storage of Credentials in RestUploadManager.xml

CVE-2022-44758 MEDIUM

BigFix Insights for Vulnerability Remediation < 2.0.3 - Insufficiently Protected Credentials in Fixlet Content

CVE-2022-44757 MEDIUM

BigFix Insights for Vulnerability Remediation < 2.0.3 - Insufficiently Protected Credentials

CVE-2022-42451 MEDIUM

HCL BigFix Patch Management < 1055 - Insufficiently Protected Credentials

CVE-2022-47561 HIGH

Ormazabal ekorCCP and ekorrCI Firmware - Unauthenticated Credential Exposure via admin.xml

CVE-2022-45611 CRITICAL

Fresenius Kabi PharmaHelp 5.1.759.0 - Insufficiently Protected Credentials

CVE-2022-4926 MEDIUM

Google Chrome < 109.0.5414.119 - Insufficient Policy Enforcement in Intents

CVE-2022-47376 HIGH

Alaris Infusion Central <1.4 - Info Disclosure

CVE-2022-47880 MEDIUM

Jedox 2020.2.5 - Authenticated Information Disclosure via Test Connection Function

CVE-2022-40685 MEDIUM

Intel Data Center Manager < 5.0.1 - Authenticated Information Disclosure via Insufficiently Protected Credentials

CVE-2022-45859 MEDIUM

FortiNAC <=9.4.1, <=9.2.6, <=9.1.8, 8.8.0, 8.7.0; FortiNAC-F 7.2.0 - Insufficiently Protected Credentials

CVE-2022-4308 MEDIUM

Secomea GateManager - Info Disclosure

Previous Page 19 of 55 Next

Details

Vulnerabilities 1,360

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy