Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-522

CWE-522

Insufficiently Protected Credentials

Parent: CWE-1390 - Weak Authentication

The product transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval.

1,360 vulnerabilities with CWE-522

CVE-2022-1794 MEDIUM

CODESYS OPC DA Server <V3.5.18.20 - Info Disclosure

CVE-2022-35411 CRITICAL

rpc.py < 0.6.0 - Unauthenticated Remote Code Execution via Pickle Deserialization

CVE-2022-27548 MEDIUM

HCL Launch - Insufficiently Protected Credentials

CVE-2022-23725 HIGH

PingID Integration for Windows Login < 2.8 - Insufficiently Protected Credentials via Registry Permissions

CVE-2022-34816 MEDIUM

Jenkins HPE Network Virtualization Plugin 1.0 - Insufficiently Protected Credentials

CVE-2022-34809 MEDIUM

Jenkins RQM Plugin < 2.8 - Insufficiently Protected Credentials

CVE-2022-34808 MEDIUM

Jenkins Cisco Spark Plugin < 1.1.1 - Insufficiently Protected Credentials

CVE-2022-34807 MEDIUM

Jenkins Elasticsearch Query Plugin <= 1.2 - Insufficiently Protected Credentials

CVE-2022-34806 MEDIUM

Jenkins Jigomerge < 0.9 - Insufficiently Protected Credentials in Job Config Files

CVE-2022-34805 MEDIUM

Jenkins Skype notifier Plugin < 1.1.0 - Insufficiently Protected Credentials

CVE-2022-34803 MEDIUM

Jenkins OpsGenie Plugin < 1.9 - Insufficiently Protected Credentials

CVE-2022-34802 MEDIUM

Jenkins RocketChat Notifier Plugin <= 1.5.2 - Insufficiently Protected Credentials

CVE-2022-34800 MEDIUM

Jenkins Build Notifications Plugin <= 1.5.0 - Insufficiently Protected Credentials

CVE-2022-34799 MEDIUM

Jenkins Deployment Dashboard Plugin <= 1.0.10 - Insufficiently Protected Credentials

CVE-2022-31887 CRITICAL

Marval MSM v14.19.0.12476 - 0-Click Account Takeover and Privilege Escalation

CVE-2022-31085 MEDIUM

LDAP Account Manager <8.0 - Info Disclosure

CVE-2022-2221 MEDIUM

Devolutions Remote Desktop Manager < 2022.1.8 - Authenticated Information Exposure in My Account Settings

CVE-2022-28167 MEDIUM

Brocade SANnav < 2.1.1.8 - Plaintext Password Exposure in Async Job Scheduler Log

CVE-2022-33953 MEDIUM

IBM Robotic Process Automation <21.0.2 - Info Disclosure

CVE-2022-2103 CRITICAL

SEPCO Control and Protection Relay Firmware 1.23.0-1.23.21 - Unauthenticated Sensitive File Read and RCE via FTP

CVE-2022-1666 MEDIUM

SEPCOs Control and Protection Relay Firmware 1.23.0-1.23.21 - Insufficiently Protected Credentials

CVE-2022-34213 MEDIUM

Jenkins Squash TM Publisher <1.0.0 - Info Disclosure

CVE-2022-34202 MEDIUM

Jenkins EasyQA Plugin <1.0 - Info Disclosure

CVE-2022-34199 MEDIUM

Jenkins Convertigo Mobile Platform Plugin <1.1 - Info Disclosure

CVE-2022-21184 MEDIUM

atvise 3.5.4-3.7 - Cleartext Transmission of Sensitive Information via License Registration

Previous Page 23 of 55 Next

Details

Vulnerabilities 1,360

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy