Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-522

CWE-522

Insufficiently Protected Credentials

Parent: CWE-1390 - Weak Authentication

The product transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval.

1,360 vulnerabilities with CWE-522

CVE-2020-8339 MEDIUM

IBM BladeCenter AMM Firmware < 3.68n - Authenticated XSSI via Legacy Web Interface

CVE-2020-16097 HIGH

Gallagher Command Centre < 7.90.1038 - Insufficiently Protected Credentials via Debug Port

CVE-2020-15791 MEDIUM

SIMATIC S7-300 and S7-400 CPU Families - Insufficiently Protected Credentials via ISO-TSAP Authentication

CVE-2020-7299 MEDIUM

McAfee True Key < 6.2.109.2 - Cleartext Storage of Sensitive Information in Memory

CVE-2020-3547 MEDIUM

Cisco AsyncOS < 13.5.1-277 - Authenticated Sensitive Information Exposure via Raw HTML

CVE-2020-6874 CRITICAL

ZTE ZXIPTV Firmware - Insufficiently Protected Credentials

CVE-2020-24622 MEDIUM

Sonatype Nexus Repository <3.26.1 - Info Disclosure

CVE-2020-4593 MEDIUM

IBM Security Guardium Insights 2.0.1 - Plaintext Credential Storage

CVE-2020-16280 MEDIUM

RangeeOS 8.0.4 - Insufficiently Protected Credentials

CVE-2020-8210 HIGH

Citrix XenMobile <10.12 - Info Disclosure

CVE-2020-7307 MEDIUM

McAfee Data Loss Prevention for Mac < 11.5.2 - Unprotected Storage of Credentials in Log Files

CVE-2020-7306 MEDIUM

McAfee Data Loss Prevention for Mac < 11.5.2 - Unprotected Storage of Credentials in Log Files

CVE-2020-17489 MEDIUM

GNOME gnome-shell <3.36.4 - Info Disclosure

CVE-2020-9404 HIGH

PACTware < 4.1 SP6 and 5.0-5.0.5.31 - Insufficiently Protected Credentials

CVE-2020-9403 MEDIUM

PACTware < 4.1 SP6 and 5.0-5.0.5.31 - Insufficiently Protected Credentials

CVE-2020-15661 MEDIUM

Firefox for iOS < 28.0 - Password Leak via Autofill WKUserScript Override

CVE-2020-9525 HIGH

CS2 Network P2P <= 3.0.3a - Insufficiently Protected Credentials

CVE-2020-15062 HIGH

DIGITUS DA-70254 - Privilege Escalation

CVE-2020-15058 HIGH

Lindy 42633 4-Port USB 2.0 Gigabit Network Server 2.078.000 - Cleartext Transmission of Sensitive Information via UDP

CVE-2020-15054 HIGH

TP-Link USB Network Server TL-PS310U <2.079.000.t0210 - Privilege E...

CVE-2020-14334 HIGH

Red Hat Satellite 6 - Insufficiently Protected Credentials

CVE-2020-2078 MEDIUM

SICK Package Analytics <= 04.1.1 - Insufficiently Protected Credentials

CVE-2020-14489 MEDIUM

OpenClinic GA 5.09.02 and 5.89.05b - Insufficiently Protected Credentials

CVE-2020-13915 HIGH

Ruckus Wireless Unleashed < 200.7.10.102.92 - Unauthenticated Admin Credential Overwrite via HTTP Request

CVE-2020-10609 HIGH

Grundfos CIM 500 v06.16.00 - Info Disclosure

Previous Page 34 of 55 Next

Details

Vulnerabilities 1,360

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy