The product transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval.
1,363 vulnerabilities with CWE-522
CVE-2018-20440
CRITICAL
Technicolor CWA0101 A23E-c7000r5712-170315-SKC - Unauthenticated Wi-Fi Credential Exposure via SNMP
CVSS 9.8
CVE-2018-20439
CRITICAL
Technicolor DPC3928SL D3928SL-PSIP-13-A010-c3420r55105-170214a - Unauthenticated Wi-Fi Credential Exposure via SNMP
CVSS 9.8
CVE-2018-20438
CRITICAL
Technicolor TC7110.AR STD3.38.03 - Unauthenticated Wi-Fi Credential Exposure via SNMP OID Requests
CVSS 9.8
CVE-2018-18698
CRITICAL
Xiaomi Mi A1 Firmware - Insufficiently Protected Credentials via Logcat Exposure
CVSS 9.8
CVE-2018-20401
CRITICAL
Zoom 5352 v5.5.8.6Y - Unauthenticated Credential Exposure via SNMP OID Requests
CVSS 9.8
CVE-2018-20400
CRITICAL
Ubee DVW2108 6.28.1017 and DVW2110 6.28.2012 - Unauthenticated Credential Exposure via SNMP OID Requests
CVSS 9.8
CVE-2018-20399
CRITICAL
Motorola SBG901 SBG941 and SVG1202 Firmware - Unauthenticated Credential Exposure via SNMP OID Requests
CVSS 9.8
CVE-2018-20398
CRITICAL
Skyworth CM5100 Series Unauthenticated Credential Exposure via SNMP
CVSS 9.8
CVE-2018-20397
CRITICAL
mplus CBC383Z Firmware - Unauthenticated Credential Exposure via SNMP OID Requests
CVSS 9.8
CVE-2018-20396
CRITICAL
Telaum MING2120J and MING6300 Firmware - Unauthenticated Credential Exposure via SNMP OID Requests
CVSS 9.8
CVE-2018-20395
CRITICAL
NETWAVE MNG6200 C4835805jrc12FU121413.cpr - Unauthenticated Credential Exposure via SNMP OID Requests
CVSS 9.8
CVE-2018-20394
CRITICAL
Thomson DWG849 DWG850-4 DWG855 TWG870 - Unauthenticated Credential Exposure via SNMP OID Requests
CVSS 9.8
CVE-2018-20392
CRITICAL
Cisco DPC2100 Firmware v2.0.2r1256-060303 - Unauthenticated Credential Exposure via SNMP OID Requests
CVSS 9.8
CVE-2018-20391
CRITICAL
TEKNOTEL CBW700N 81.447.392110.729.024 - Unauthenticated Credential Exposure via SNMP OID Requests
CVSS 9.8
CVE-2018-20390
CRITICAL
Kaonmedia CG2001 Firmware - Unauthenticated Credential Exposure via SNMP OID Requests
CVSS 9.8
CVE-2018-20389
CRITICAL
D-Link DCM-604 and DCM-704 Firmware - Unauthenticated Credential Exposure via SNMP OID Requests
CVSS 9.8
CVE-2018-20388
CRITICAL
Comtrend CM-6200un 123.447.007 and CM-6300n 123.553mp1.005 - Unauthenticated Credential Exposure via SNMP OID Requests
CVSS 9.8
CVE-2018-20387
CRITICAL
Bnmux BCW700J 5.20.7 BCW710J 5.30.6a BCW710J2 5.30.16 - Unauthenticated Credential Exposure via SNMP OID Requests
CVSS 9.8
CVE-2018-20386
CRITICAL
ARRIS SBG6580-2 D30GW-SEAEAGLE-1.5.2.5-GA-00-NOSH - Unauthenticated Credential Exposure via SNMP OID Requests
CVSS 9.8
CVE-2018-20385
CRITICAL
CastleNet CBV38Z4EC, CBV38Z4ECNIT, CBW383G4J, and CBW38G4J Firmware - Credential Exposure via SNMP OID Requests
CVSS 9.8
CVE-2018-20384
CRITICAL
iNovo Broadband IB-8120-W21 and IB-8120-W21E1 Firmware - Unauthenticated Credential Exposure via SNMP OID Requests
CVSS 9.8
CVE-2018-20383
CRITICAL
ARRIS DG950A 7.10.145 and DG950S 7.10.145.EURO - Unauthenticated Credential Exposure via SNMP OID Requests
CVSS 9.8
CVE-2018-20382
CRITICAL
Jiuzhou BCM93383WRG 139.4410mp1.3921132mp1.899.004404.004 - Unauthenticated Credential Exposure via SNMP OID Requests
CVSS 9.8
CVE-2018-17245
CRITICAL
Kibana 4.0-4.6, 5.0-5.6.12, 6.0-6.4.2 - Credential Exposure in PDF Report Generation
CVSS 9.8
CVE-2018-1000851
CRITICAL
Copay Bitcoin Wallet <5.1.0 - Private Key Compromise
CVSS 9.8
Details
Vulnerabilities
1,363