Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-522

CWE-522

Insufficiently Protected Credentials

Parent: CWE-1390 - Weak Authentication

The product transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval.

1,360 vulnerabilities with CWE-522

CVE-2022-41247 MEDIUM

Jenkins BigPanda Notifier Plugin <1.4.0 - Info Disclosure

CVE-2022-39816 MEDIUM

NOKIA 1350 OMS R14.2 - Authenticated Insufficiently Protected Credentials

CVE-2022-36617 MEDIUM

Arq Backup < 7.19.5.0 - Insufficiently Protected Credentials

CVE-2022-34371 HIGH

Dell PowerScale OneFS 9.0.0-9.1.0.19, 9.2.1.12, 9.3.0.6, 9.4.0.3 - Unprotected Transport of Credentials

CVE-2022-27560 MEDIUM

HCL VersionVault Express - Insufficiently Protected Credentials

CVE-2022-0718 MEDIUM

Python Oslo-Utils - Info Disclosure

CVE-2022-34838 HIGH

ABB zenon < 8.20 - Insufficiently Protected Credentials

CVE-2022-34837 MEDIUM

ABB Zenon < 8.20 - Insufficiently Protected Credentials

CVE-2022-38665 MEDIUM

Jenkins CollabNet Plugins <2.0.8 - Info Disclosure

CVE-2022-38663 MEDIUM

Jenkins Git Plugin <4.11.4 - Info Disclosure

CVE-2022-30944 MEDIUM

Intel Standard Manageability and Active Management Technology Firmware - Insufficiently Protected Credentials

CVE-2022-30601 CRITICAL

Intel Standard Manageability - Insufficiently Protected Credentials

CVE-2022-30296 HIGH

Intel Datacenter Group Event iOS - Unauthenticated Credential Exposure via Network Access

CVE-2022-29507 MEDIUM

Intel Team Blue - Insufficiently Protected Credentials

CVE-2022-26844 HIGH

Intel(R) SEAPI - Privilege Escalation

CVE-2022-29959 MEDIUM

Emerson OpenBSI through 2022-04-29 - Insufficiently Protected Credentials in SecUsers.ini

CVE-2022-36308 CRITICAL

Airspan AirVelocity <15.18.00.2511 - Info Disclosure

CVE-2022-36307 MEDIUM

AirVelocity 1500 Firmware 9.3.0.01249-15.18.00.2511 - Insufficiently Protected SNMP Credentials via Serial Port

CVE-2022-22983 MEDIUM

VMware Workstation 16.0.0-16.2.3 - Unprotected Storage of Credentials

CVE-2022-20914 MEDIUM

Cisco Identity Services Engine 2.4.0-2.5.9 - Authenticated Sensitive Information Disclosure via ERS API

CVE-2022-33169 MEDIUM

IBM Robotic Process Automation <21.0.3 - Info Disclosure

CVE-2022-36901 MEDIUM

Jenkins HTTP Request Plugin < 1.15 - Insufficiently Protected Credentials

CVE-2022-1766 HIGH

anchore/anchorectl < 0.1.5 - Insufficiently Protected Credentials in SBOM Generation

CVE-2022-27544 MEDIUM

HCL BigFix Platform 9.5-9.5.19 - Authenticated Cleartext SMTP Credential Exposure

CVE-2022-22998 HIGH

Western Digital My Cloud Home Duo and My Cloud Home Firmware < 8.5.1-102 - Insufficiently Protected AWS Credentials

Previous Page 22 of 55 Next

Details

Vulnerabilities 1,360

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy