Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-522

CWE-522

Insufficiently Protected Credentials

Parent: CWE-1390 - Weak Authentication

The product transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval.

1,360 vulnerabilities with CWE-522

CVE-2022-48433 MEDIUM

JetBrains IntelliJ IDEA < 2023.1 - NTLM Hash Exposure via Built-in Web Server API

CVE-2022-45599 CRITICAL

Aztech WMB250AC Firmware 016 2020 - PHP Type Juggling in login.php

CVE-2022-41614 MEDIUM

Intel(R) ON Event Series <2.0 - Info Disclosure

CVE-2022-40678 HIGH

FortiNAC 8.5.0-9.4.0 - Insufficiently Protected Credentials

CVE-2022-43969 CRITICAL

Ricoh mp_c4504ex <1.06 - Info Disclosure

CVE-2022-41564 MEDIUM

TIBCO Hawk & TIBCO Operational Intelligence Hawk RedTail <6.2.1, <7...

CVE-2022-43460 HIGH

Driver Distributor <2.2.3.1 - Info Disclosure

CVE-2022-34445 MEDIUM

Dell PowerScale OneFS 8.2.x-9.3.x - Weak Password Encoding

CVE-2022-32520 HIGH

Data Center Expert < 7.9.0 - Insufficiently Protected Credentials

CVE-2022-32519 HIGH

Data Center Expert <7.9.0 - Info Disclosure

CVE-2022-32518 HIGH

Data Center Expert < 7.9.0 - Insufficiently Protected Credentials

CVE-2022-46967 CRITICAL

Revenue Collection System v1.0 - Info Disclosure

CVE-2022-4693 CRITICAL

User Verification WordPress <1.0.94 - Auth Bypass

CVE-2022-38469 HIGH

Ge GE Proficy Historian 7.0 through 2023 - Information Disclosure

CVE-2022-23538 MEDIUM

sylabs scs-library-client >=1.4.0 <1.4.2 - Credential Leak via S3 Redirect

CVE-2022-41859 HIGH

FreeRADIUS < 3.0.0 - Insufficiently Protected Credentials via EAP-PWD Password Element

CVE-2022-2967 MEDIUM

Prosys OPC UA Modbus Server < 1.4.20 and UA Simulation Server < 5.4.0 - Insufficiently Protected Credentials

CVE-2022-22458 MEDIUM

IBM Security Verify Governance, Identity Manager 10.0.1 - Info Disc...

CVE-2022-4612 MEDIUM

Click Studios Passwordstate - Info Disclosure

CVE-2022-46142 MEDIUM

Siemens Ruggedcom RM1224 LTE(4G) EU Firmware - Insufficiently Protected Credentials

CVE-2022-4312 MEDIUM

PcVue 8.10-15.2.3 - Unauthenticated Cleartext Credential Exposure in Email and SMS Configuration Files

CVE-2022-42445 MEDIUM

HCL Launch 6.2.7.0-6.2.7.16 - Authenticated Credential Recovery via LDAP Search

CVE-2022-29839 MEDIUM

Western Digital My Cloud OS < 5.25.124 - Insufficiently Protected Credentials in Remote Backups Application

CVE-2022-37783 HIGH

Craft CMS 3.0.0-3.7.32 - Password Hash Exposure in Anti-CSRF Token

CVE-2022-43442 MEDIUM

+F FS040U <v2.3.4 - Info Disclosure

Previous Page 20 of 55 Next

Details

Vulnerabilities 1,360

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy