Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-922

CWE-922

Insecure Storage of Sensitive Information

Parent: CWE-664 - Improper Control of a Resource Through its Lifetime

The product stores sensitive information without properly limiting read or write access by unauthorized actors.

373 vulnerabilities with CWE-922

CVE-2024-20462 MEDIUM

Cisco ATA 190 Series - Info Disclosure

CVE-2024-48783 HIGH

Ruijie NBR3000D-E - Info Disclosure

CVE-2024-21258 MEDIUM

Oracle E-Business Suite <12.2.15 - Info Disclosure

CVE-2024-21211 LOW

Oracle Java SE <23 - Compiler Vuln

CVE-2024-48770 HIGH

Plug n Play Camera com.wisdomcity.zwave <1.1.0 - Info Disclosure

CVE-2024-42018 HIGH

Atos Eviden SMC xScale <1.6.6 - Info Disclosure

CVE-2024-30132 LOW

HCL Nomad Server on Domino < 1.0.13 - Sensitive Information Exposure via Missing HTTP Security Headers

CVE-2024-28808 LOW

Infinera hiT 7300 <5.60.50 - Info Disclosure

CVE-2024-46635 MEDIUM

INROAD <v20240206 - Info Disclosure

CVE-2024-47122 MEDIUM

goTenna Pro < 1.6.1 and < 2.0.3 - Insecure Storage of Sensitive Encryption Keys

CVE-2024-45374 MEDIUM

goTenna < 2.0.7 - Weak Password Requirements for Encryption Key Broadcast

CVE-2024-43694 MEDIUM

goTenna Pro ATAK Plugin - Info Disclosure

CVE-2024-47197 HIGH

Maven Archetype Plugin <3.3.0 - Info Disclosure

CVE-2024-39339 HIGH

Smartplay headunits - Info Disclosure

CVE-2024-37728 HIGH

OfficeWeb365 <8.6.1.0 - Info Disclosure

CVE-2024-39775 MEDIUM

OpenHarmony < 4.1 - Out-of-bounds Read

CVE-2024-39612 MEDIUM

OpenHarmony <= 4.0.0 - Out-of-bounds Read

CVE-2024-38382 MEDIUM

OpenHarmony <4.0.0 - Info Disclosure

CVE-2024-5288 MEDIUM

wolfssl < 5.7.2 - ECDSA Private Key Disclosure via Rowhammer Fault Injection

CVE-2024-42677 MEDIUM

Huizhi Enterprise Resource Management <1.0 - Info Disclosure

CVE-2024-7569 CRITICAL

Ivanti Neurons for ITSM 2023.4 and earlier - Unauthenticated Information Disclosure via Debug OIDC Client Secret

CVE-2024-40832 LOW

macOS Sonoma <14.6 - Info Disclosure

CVE-2024-40813 MEDIUM

watchOS 10.6-iOS 17.6-iPadOS 17.6 - Info Disclosure

CVE-2024-6916 MEDIUM

Zowe CLI - Insecure Storage of Sensitive Information via --show-inputs-only Flag

CVE-2024-29120 MEDIUM

Streampark <2.1.4 - Info Disclosure

Previous Page 6 of 15 Next

Details

Vulnerabilities 373

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy