Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-922

CWE-922

Insecure Storage of Sensitive Information

Parent: CWE-664 - Improper Control of a Resource Through its Lifetime

The product stores sensitive information without properly limiting read or write access by unauthorized actors.

373 vulnerabilities with CWE-922

CVE-2024-12082 MEDIUM

OpenHarmony < 4.0 - Out-of-bounds Read

CVE-2024-8899 MEDIUM

Jeg Elementor Kit <= 2.6.9 - Authenticated Sensitive Information Exposure via Tabs View Render Function

CVE-2024-30896 CRITICAL

InfluxDB OSS <2.7.11 - Info Disclosure

CVE-2024-3334 MEDIUM

Digital Guardian <8.2.0 - Auth Bypass

CVE-2024-52519 LOW

Nextcloud Server 27.0.0-27.1.11.8 and 28.0.0-28.0.10 - Insecure Storage of OAuth2 Client Secrets

CVE-2024-3502 HIGH

lunary-ai/lunary <1.2.5 - Info Disclosure

CVE-2024-3501 HIGH

lunary-ai/lunary <1.2.6 - Info Disclosure

CVE-2024-10943 CRITICAL

Rockwell Automation FactoryTalk Updater 4.00.00-4.10.00 - Authentication Bypass via Shared Secrets

CVE-2024-43427 LOW

moodle <4.1.12 and 4.4.0-4.4.2 - Sensitive Information Exposure in Site Administration Presets Export

CVE-2024-48939 HIGH

Paxton Net2 <6.07.14023.5015 - Info Disclosure

CVE-2024-34677 MEDIUM

System UI <SMR Nov-2024 Release 1 - Info Disclosure

CVE-2024-10028 HIGH

Everest Backup - WordPress Cloud <2.2.13 - Info Disclosure

CVE-2024-48353 HIGH

Yealink Meeting Server <V26.0.0.67 - Info Disclosure

CVE-2024-48352 HIGH

Yealink Meeting Server <V26.0.0.67 - Info Disclosure

CVE-2024-51399 MEDIUM

Altai Technologies Ltd Altai IX500 Indoor - Info Disclosure

CVE-2024-44257 MEDIUM

macOS Ventura <13.7.1 - Info Disclosure

CVE-2024-44216 MEDIUM

macOS Ventura <13.7.1 - Info Disclosure

CVE-2024-44275 MEDIUM

macOS Ventura <13.7.1 - Info Disclosure

CVE-2024-44263 MEDIUM

iPadOS < 18.1 - Unprotected User Data Exposure via Logic Issue

CVE-2024-44222 LOW

macOS Ventura <13.7.1 - Info Disclosure

CVE-2024-44213 MEDIUM

macOS Ventura <13.7.1 - Info Disclosure

CVE-2024-44175 MEDIUM

macOS < 14.7.1 and < 15 - Unprotected User Data Exposure via Symlink Validation Issue

CVE-2024-44174 MEDIUM

macOS < 15.0 - Unprotected User Data Exposure via Lock Screen

CVE-2024-30122 MEDIUM

HCL Sametime < 12.0.2 - Insecure Storage of Sensitive Information via Missing Security Headers

CVE-2024-10041 MEDIUM

linux-pam - Insecure Storage of Sensitive Information via Branch Predictor Training

Previous Page 5 of 15 Next

Details

Vulnerabilities 373

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy