Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-522

CWE-522

Insufficiently Protected Credentials

Parent: CWE-1390 - Weak Authentication

The product transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval.

1,323 vulnerabilities with CWE-522

CVE-2025-14148 MEDIUM

IBM UCD - IBM DevOps Deploy <8.1.2.3 - Info Disclosure

CVE-2025-58130 CRITICAL

Apache Fineract < 1.12.1 - Insufficiently Protected Credentials

CVE-2025-64898 MEDIUM

Adobe Coldfusion - Insufficiently Protected Credentials

CVE-2025-63361 MEDIUM

Waveshare RS232/485 TO WIFI ETH (B) - Info Disclosure

CVE-2025-13758 LOW

Devolutions Server < 2025.2.21.0 - Information Disclosure

CVE-2025-13164 MEDIUM

EasyFlow GP - Info Disclosure

CVE-2025-13163 MEDIUM

EasyFlow GP - Info Disclosure

CVE-2025-13187 MEDIUM

Intelbras ICIP 2.0.20 - Info Disclosure

CVE-2025-36096 CRITICAL

IBM Vios - Insufficiently Protected Credentials

CVE-2025-6571 MEDIUM

3rd-party component - Info Disclosure

CVE-2025-42897 MEDIUM

SAP Business One - Info Disclosure

CVE-2025-12636 MEDIUM

Ubia Camera Ecosystem - Info Disclosure

CVE-2025-54863 CRITICAL

Radiometrics Vizair < 2025-08 - Insufficiently Protected Credentials

CVE-2025-34270 MEDIUM

Nagios Log Server < 2024 - Insufficiently Protected Credentials

CVE-2025-12461 MEDIUM

Unprotected Path - Info Disclosure

CVE-2025-62794 LOW

GitHub Workflow Updater <0.0.7 - Info Disclosure

CVE-2025-61482 HIGH

NetKnights GmbH privacyIDEA Authenticator v.4.3.0 - Auth Bypass

CVE-2025-54808 HIGH

Oxford Nanopore Technologies' MinKNOW <24.11 - Info Disclosure

CVE-2025-62157 MEDIUM

Argoproj Argo Workflows - Insufficiently Protected Credentials

CVE-2025-35054 MEDIUM

Newforma Info Exchange - Privilege Escalation

CVE-2025-61776 MEDIUM

Dependency-Track <4.13.5 - Info Disclosure

CVE-2025-37728 MEDIUM

Crowdstrike Connector - Info Disclosure

CVE-2025-27231 MEDIUM

LDAP - Info Disclosure

CVE-2025-34207 CRITICAL

Vasion Virtual Appliance Application - Missing Authentication

CVE-2025-34196 CRITICAL

Vasion Virtual Appliance Application < 25.1.1413 - Insufficiently Protected Credentials

Previous Page 4 of 53 Next

Details

Vulnerabilities 1,323

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy