Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-922

CWE-922

Insecure Storage of Sensitive Information

Parent: CWE-664 - Improper Control of a Resource Through its Lifetime

The product stores sensitive information without properly limiting read or write access by unauthorized actors.

373 vulnerabilities with CWE-922

CVE-2020-26176 MEDIUM

tangro Business Workflow <1.18.1 - Info Disclosure

CVE-2020-4906 LOW

IBM Financial Transaction Manager - Info Disclosure

CVE-2020-4886 LOW

IBM InfoSphere Information Server 11.7 - Info Disclosure

CVE-2020-4650 LOW

IBM Maximo Spatial Asset Management <7.6.1.0 - Info Disclosure

CVE-2020-13937 MEDIUM

Apache Kylin <4.0.0 - Info Disclosure

CVE-2020-26104 HIGH

cPanel < 88.0.3 - Insecure Storage of Sensitive Information

CVE-2020-4315 MEDIUM

IBM Business Automation Content Analyzer on Cloud 1.0 - Open Redirect

CVE-2020-15775 HIGH

Gradle Enterprise <2020.2.4 - Info Disclosure

CVE-2020-4344 LOW

IBM Tivoli Business Service Manager <6.2.0.3 - Info Disclosure

CVE-2020-4171 MEDIUM

IBM Security Guardium Insights 2.0.1 - Info Disclosure

CVE-2020-1493 MEDIUM

Microsoft 365 Apps and Outlook - Insecure Storage of Sensitive Information via File Attachment Links

CVE-2020-4371 LOW

IBM Verify Gateway <1.0.2 - Info Disclosure

CVE-2020-8482 HIGH

ABB Device Library Wizard <6.0.X - Info Disclosure

CVE-2020-8481 CRITICAL

ABB Ability System 800xA - Exposure of Sensitive Information via Unprotected File

CVE-2020-7000 HIGH

VISAM VBASE Editor <11.5.0.2 - Info Disclosure

CVE-2020-5262 HIGH

EasyBuild < 4.1.2 - Sensitive Information Exposure via Debug Log Files

CVE-2020-4197 LOW

IBM Tivoli Netcool/OMNIbus_GUI 8.1.0 - Info Disclosure

CVE-2019-20469 MEDIUM

One2Track 2019-12-08 - Info Disclosure

CVE-2019-19561 LOW

Mercedes-Benz HERMES 1.5 - Info Disclosure

CVE-2019-19557 LOW

Mercedes-Benz HERMES 1 - Info Disclosure

CVE-2019-8790 MEDIUM

Swift < 5.1.1 - Insecure Storage of Sensitive Information via URLSession File Descriptor Mismanagement

CVE-2019-4695 LOW

IBM Security Guardium Data Encryption <3.0.0.2 - Info Disclosure

CVE-2019-12825 MEDIUM

GitLab Enterprise 12.0.0-pre - Privilege Escalation

CVE-2019-20060 HIGH

MFScripts YetiShare <4.5.4 - Info Disclosure

CVE-2019-13719 MEDIUM

Google Chrome < 78.0.3904.70 - Insecure Storage of Sensitive Information via Full Screen Mode

Previous Page 14 of 15 Next

Details

Vulnerabilities 373

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy