Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-522

CWE-522

Insufficiently Protected Credentials

Parent: CWE-1390 - Weak Authentication

The product transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval.

1,363 vulnerabilities with CWE-522

CVE-2018-7510 CRITICAL

BeaconMedaes TotalAlert Scroll <4107600010.23 - Info Disclosure

CVE-2018-11544 CRITICAL

The Olive Tree Ftp Server 1.32 - Insufficiently Protected Credentials in Shared Preferences

CVE-2018-7518 CRITICAL

BeaconMedaes Scroll Medical Air Systems Firmware < 4107600010.23 - Insufficiently Protected Credentials

CVE-2018-10355 HIGH

Trend Micro Email Encryption Gateway 5.5 - Info Disclosure

CVE-2018-10327 HIGH

PrinterOn Enterprise 4.1.3 - Info Disclosure

CVE-2018-6618 HIGH

Easy Hosting Control Panel 0.37.12.b - Insufficiently Protected Credentials

CVE-2018-5446 MEDIUM

Medtronic 2090 CareLink Programmer - Info Disclosure

CVE-2018-1074 HIGH

ovirt-engine < 4.2.2.5 and 4.1.11.1 - Insufficiently Protected Power Management Credentials

CVE-2018-10286 HIGH

Ericsson-LG iPECS NMS A.1Ac - Info Disclosure

CVE-2018-10024 CRITICAL

ubiQuoss Switch VP5208A - Info Disclosure

CVE-2018-4170 HIGH

macOS < 10.13.4 - Unprotected User Data Exposure via Admin Framework

CVE-2018-9160 CRITICAL

SickRage < 2018.03.09-1 - Unprotected Credential Exposure via HTTP Response

CVE-2018-5708 HIGH

D-Link DIR-601 B1 2.02NA - Info Disclosure

CVE-2018-9031 CRITICAL

TNLSoftSolutions Sentry Vision 3.x - Unauthenticated Password Disclosure via Client-Side Authentication

CVE-2018-1000104 HIGH

Jenkins Coverity Plugin <1.10.0 - Info Disclosure

CVE-2018-7698 HIGH

D-Link mydlink+ - Insufficiently Protected Credentials via Unencrypted Transmission

CVE-2018-1377 HIGH

IBM Security Guardium Big Data Intelligence - Info Disclosure

CVE-2018-3609 HIGH

Trend Micro InterScan Messaging Security Virtual Appliance 9.0-9.1 - Sensitive Information Exposure via Log File

CVE-2018-0828 HIGH

Windows 10 1607 and Windows Server 2016 - Insufficiently Protected Credentials

CVE-2018-1000057 MEDIUM

Jenkins Credentials Binding Plugin <1.14 - Info Disclosure

CVE-2017-18777 HIGH

NETGEAR Multiple Routers and Gateways - Administrative Password Disclosure

CVE-2017-18845 HIGH

NETGEAR R6700v2 and R6800 < 1.1.0.38 - Insufficiently Protected Credentials

CVE-2017-18844 HIGH

NETGEAR R6700v2/R6800/D7000 Firmware - Unprotected Admin Credential Exposure

CVE-2017-18843 HIGH

NETGEAR R6700v2/R6800/D7000 Firmware - Unprotected Admin Credential Exposure

CVE-2017-18695 MEDIUM

Android KK(4.4) L(5.0/5.1) M(6.0) N(7.0) - Credential Exposure via EAS Autodiscover Packet

Previous Page 50 of 55 Next

Details

Vulnerabilities 1,363

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy