Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-522

CWE-522

Insufficiently Protected Credentials

Parent: CWE-1390 - Weak Authentication

The product transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval.

1,360 vulnerabilities with CWE-522

CVE-2020-27557 MEDIUM

BASETech GE-131 BT-1837836 - Info Disclosure

CVE-2020-27554 HIGH

BASETech GE-131 BT-1837836 - Info Disclosure

CVE-2020-26508 CRITICAL

Canon Oce ColorWave 3500 <5.1.1.0 - Info Disclosure

CVE-2020-8259 HIGH

Nextcloud Server <19.0.1 - Info Disclosure

CVE-2020-8152 MEDIUM

Nextcloud Server 19.0.1 - Info Disclosure

CVE-2020-12333 HIGH

Intel QuickAssist Technology < 1.7.l.4.10.0 - Privilege Escalation via Insufficiently Protected Credentials

CVE-2020-12316 MEDIUM

Intel Endpoint Management Assistant < 1.3.3 - Information Disclosure via Weak Credential Protection

CVE-2020-12309 MEDIUM

Intel SSD Firmware - Unauthenticated Information Disclosure via Physical Access

CVE-2020-4568 MEDIUM

IBM Security Key Lifecycle Manager 3.0, 3.0.1, 4.0 - Insufficiently Protected Credentials

CVE-2020-27688 HIGH

RVTools 4.0.6 - Insufficiently Protected Credentials via Static Encryption Key

CVE-2020-2319 MEDIUM

Jenkins VMware Lab Manager Slaves Plugin <0.2.8 - Info Disclosure

CVE-2020-2318 MEDIUM

Jenkins Mail Commander Plugin <1.0.0 - Info Disclosure

CVE-2020-2314 MEDIUM

Jenkins AppSpider Plugin <1.0.12 - Info Disclosure

CVE-2020-8183 HIGH

Nextcloud Server 19.0.0 - Info Disclosure

CVE-2020-27888 HIGH

Ubiquiti UniFi Meshing Access Point UAP-AC-M <4.3.21.11325 & UniFi ...

CVE-2020-7196 MEDIUM

HPE BlueData EPIC < 4.0 & Ezmeral Container Platform 5.0 - Exposed kdc_admin_password

CVE-2020-1688 MEDIUM

Juniper Networks SRX Series/NFX Series - Privilege Escalation

CVE-2020-1669 MEDIUM

Juniper Networks Junos OS <19.4R3-20.1R1-S4 - Info Disclosure

CVE-2020-15157 MEDIUM

containerd <1.2.14 - Info Disclosure

CVE-2020-3483 HIGH

Duo Network Gateway - Info Disclosure

CVE-2020-13344 MEDIUM

GitLab <13.2.10-13.4.2 - Info Disclosure

CVE-2020-2297 LOW

Jenkins SMS Notification Plugin <1.2 - Info Disclosure

CVE-2020-2291 LOW

Jenkins couchdb-statistics Plugin <0.3 - Info Disclosure

CVE-2020-26149 HIGH

NATS nats.js < 2.0.0-209, nats.ws < 1.0.0-111, and nats.deno < 1.0.0-9 - Insufficiently Protected Credentials

CVE-2020-7945 MEDIUM

Continuous Delivery for Puppet Enterprise - Insufficiently Protected Credentials in Deployment Definition

Previous Page 33 of 55 Next

Details

Vulnerabilities 1,360

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy