Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-522

CWE-522

Insufficiently Protected Credentials

Parent: CWE-1390 - Weak Authentication

The product transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval.

1,360 vulnerabilities with CWE-522

CVE-2019-10422 MEDIUM

Jenkins Call Remote Job Plugin < 1.0.21 - Unprotected Credential Storage in config.xml

CVE-2019-10421 MEDIUM

Jenkins Azure Event Grid Build Notifier Plugin < 0.1 - Insufficiently Protected Credentials

CVE-2019-10420 MEDIUM

Jenkins Assembla Plugin < 1.4 - Insufficiently Protected Credentials

CVE-2019-10419 MEDIUM

Jenkins Vfabric Application Director < 1.3 - Insufficiently Protected Credentials

CVE-2019-10416 MEDIUM

Jenkins Violation Comments TO Gitlab < 2.28 - Insufficiently Protected Credentials

CVE-2019-10415 MEDIUM

Jenkins Violation Comments TO Gitlab < 2.28 - Insufficiently Protected Credentials

CVE-2019-10414 MEDIUM

Jenkins Git Changelog Plugin < 2.17 - Insufficiently Protected Credentials in Job Config Files

CVE-2019-10413 MEDIUM

Jenkins Data Theorem Mobile App Security < 1.3 - Insufficiently Protected Credentials

CVE-2019-5505 CRITICAL

ONTAP Select Deploy Administration Utility 2.2-2.12.1 - Cleartext Transmission of Sensitive Information

CVE-2019-15635 MEDIUM

Grafana 5.4.0 - Cleartext Transmission of Sensitive Information via Data Source Settings

CVE-2019-16649 CRITICAL

Supermicro X11DAI-N & X11/H11/H12/M11/X9/X10 Firmware - Virtual Media Service Credential Exposure

CVE-2019-11664 MEDIUM

Micro Focus Service Manager <9.63 - Info Disclosure

CVE-2019-11663 MEDIUM

Micro Focus Service Manager <9.62 - Info Disclosure

CVE-2019-5534 HIGH

VMware vCenter Server < 6.7 U3, < 6.5 U3, < 6.0 U3j - Unprotected Credential Exposure via vAppConfig Properties

CVE-2019-10398 MEDIUM

Jenkins Beaker Builder Plugin < 1.9 - Insufficiently Protected Credentials

CVE-2019-11769 HIGH

TeamViewer 14.2.2558 - Privilege Escalation

CVE-2019-13349 MEDIUM

Knowage <= 6.1.1 - Authenticated Password Hash Exposure via Users Page

CVE-2019-13348 HIGH

Knowage < 6.4 - Authenticated Cleartext Credential Exposure via Datasources Page

CVE-2019-13421 MEDIUM

search-guard < 23.1 - Authenticated Insufficiently Protected Credentials

CVE-2019-10960 HIGH

Zebra Industrial Printers - Unrestricted Front Panel Passcode Exposure via Network Packet

CVE-2019-3753 MEDIUM

Dell EMC PowerConnect < 5.1.15.2 - Authenticated Plain-Text Password Exposure

CVE-2019-15052 CRITICAL

Gradle < 5.6 - Credential Leak via HTTP Redirect

CVE-2019-10385 MEDIUM

Jenkins eggPlant Plugin < 2.2 - Insufficiently Protected Credentials in Job Config Files

CVE-2019-10379 MEDIUM

Google Cloud Messaging Notification < 1.0 - Insufficiently Protected Credentials

CVE-2019-10378 MEDIUM

Jenkins TestLink Plugin <= 3.16 - Insufficiently Protected Credentials

Previous Page 41 of 55 Next

Details

Vulnerabilities 1,360

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy