Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-922

CWE-922

Insecure Storage of Sensitive Information

Parent: CWE-664 - Improper Control of a Resource Through its Lifetime

The product stores sensitive information without properly limiting read or write access by unauthorized actors.

373 vulnerabilities with CWE-922

CVE-2023-27942 MEDIUM

iPadOS < 16.4 - Unprotected User Data Exposure

CVE-2023-23542 MEDIUM

macOS Ventura <13.3 - Info Disclosure

CVE-2023-23541 LOW

iPadOS < 15.7.4 - Unprotected User Contact Data Exposure via Log Entries

CVE-2023-22687 LOW

Jose Mortellaro Freesoul Deactivate Plugins <= 1.9.4.0 - Info Discl...

CVE-2023-0580 MEDIUM

ABB My Control System <5.1 - Info Disclosure

CVE-2023-23522 MEDIUM

macOS Ventura <13.2.1 - Info Disclosure

CVE-2023-22469 MEDIUM

Nextcloud Deck < 1.8.2 - Unauthorized Sensitive Information Exposure via Card Reference Preview

CVE-2022-20939 MEDIUM

Cisco Smart Software Manager On-Prem - Privilege Escalation

CVE-2022-30361 MEDIUM

OvalEdge < 5.2.8 - Unauthenticated Sensitive Data Exposure via /user/getUserType

CVE-2022-30359 MEDIUM

OvalEdge < 5.2.8 - Authenticated Sensitive Data Exposure via /user/getUserList

CVE-2022-44581 MEDIUM

WPMU DEV Defender Security <3.3.2 - Info Disclosure

CVE-2022-46484 HIGH

Data Illusion Survey Software Solutions NGSurvey - Information Disclosure

CVE-2022-44619 HIGH

Intel(R) DCM <5.1 - Privilege Escalation

CVE-2022-43475 MEDIUM

Intel(R) DCM <5.1 - Privilege Escalation

CVE-2022-43877 MEDIUM

IBM UrbanCode Deploy <7.3.0.1 - Info Disclosure

CVE-2022-39043 LOW

Juiker - Sensitive Information Exposure via Debug Logs in External Storage

CVE-2022-38090 MEDIUM

Intel(R) Processors - Info Disclosure

CVE-2022-2815 MEDIUM

GitHub publify/publify <9.2.10 - Info Disclosure

CVE-2022-40959 MEDIUM

Firefox ESR < 102.3, Thunderbird < 102.3, Firefox < 105 - CSRF

CVE-2022-32833 MEDIUM

Safari < 16.0 - Unprotected User Data Exposure via Path Handling Issue

CVE-2022-34354 MEDIUM

IBM Sterling Partner Engagement Manager 2.0 - Info Disclosure

CVE-2022-34312 MEDIUM

IBM CICS TX 11.1 - Unauthorized Exposure of Sensitive Information via Local Web Page Storage

CVE-2022-33973 LOW

Intel(R) WAPI Security <22.2150.0.1 - Info Disclosure

CVE-2022-41876 HIGH

ezplatform-graphql <2.3.12, <1.0.13 - Info Disclosure

CVE-2022-32867 LOW

iPhone OS < 16.0 and macOS < 13.0 - Unprotected User Data Exposure via Diagnostic Logs

Previous Page 11 of 15 Next

Details

Vulnerabilities 373

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy