CWE-522

Insufficiently Protected Credentials

Parent: CWE-1390 - Weak Authentication

The product transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval.

1,324 vulnerabilities with CWE-522
CVE-2024-49817 MEDIUM
IBM Security Guardium Key Lifecycle Manager <4.2.1 - Info Disclosure
CVSS 4.4
CVE-2024-54471 MEDIUM
Apple Macos < 13.7.1 - Insufficiently Protected Credentials
CVSS 5.5
CVE-2024-53292 HIGH
Dell VxVerify <x.40.405 - Info Disclosure
CVSS 7.2
CVE-2024-46341 HIGH
Tp-link Tl-wr845n Firmware - Insufficiently Protected Credentials
CVSS 8.0
CVE-2024-50699 HIGH
Tp-link Tl-wr845n Firmware - Insufficiently Protected Credentials
CVSS 8.0
CVE-2024-53832 MEDIUM
CPCI85 <V05.30 - Info Disclosure
CVSS 4.6
CVE-2024-40583 CRITICAL
Pentaminds CuroVMS v2.0.1 - Info Disclosure
CVSS 9.1
CVE-2024-51546 HIGH
ABB ASPECT Enterprise, NEXUS Series, MATRIX Series <3.08.02 - Credentials Disclosure
CVSS 7.5
CVE-2024-51545 CRITICAL
ABB ASPECT <3.08.02-NEXUS Series <3.08.02-MATRIX Series <3.08.02 - ...
CVSS 10.0
CVE-2024-42457 MEDIUM
Veeam Backup & Replication - Info Disclosure
CVSS 6.5
CVE-2024-11856 LOW
HPE IceWall - Info Disclosure
CVSS 3.7
CVE-2024-11703 MEDIUM
Firefox < 133 - Info Disclosure
CVSS 5.7
CVE-2024-6749 MEDIUM
Axis Camera Station Pro - Info Disclosure
CVSS 6.3
CVE-2024-47142 MEDIUM
AIPHONE IXG SYSTEM <2.03 - Privilege Escalation
CVSS 5.5
CVE-2024-39290 MEDIUM
AIPHONE IX SYSTEM - Info Disclosure
CVSS 6.5
CVE-2024-47588 MEDIUM
SAP NetWeaver Java - Info Disclosure
CVSS 4.7
CVE-2024-51240 HIGH
OpenWRT Luci LTS - Privilege Escalation
CVSS 8.0
CVE-2024-34885 MEDIUM
Bitrix24 - Insufficiently Protected Credentials
CVSS 6.8
CVE-2024-34887 MEDIUM
Bitrix24 - Insufficiently Protected Credentials
CVSS 4.9
CVE-2024-34883 MEDIUM
Bitrix24 - Insufficiently Protected Credentials
CVSS 4.9
CVE-2024-34882 MEDIUM
Bitrix24 - Insufficiently Protected Credentials
CVSS 4.9
CVE-2024-43812 HIGH
Kieback & Peter's DDC4000 - Info Disclosure
CVSS 8.4
CVE-2024-9677 MEDIUM
Zyxel Uos < 1.30 - Insufficiently Protected Credentials
CVSS 5.5
CVE-2024-44000 CRITICAL
Litespeedtech Litespeed Cache - Insufficiently Protected Credentials
CVSS 9.8
CVE-2024-7755 HIGH
EWON FLEXY 202 - Info Disclosure
CVSS 8.2
Details
Vulnerabilities 1,324
Links
MITRE CWE Entry Search this CWE With Exploits