Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-922

CWE-922

Insecure Storage of Sensitive Information

Parent: CWE-664 - Improper Control of a Resource Through its Lifetime

The product stores sensitive information without properly limiting read or write access by unauthorized actors.

373 vulnerabilities with CWE-922

CVE-2024-3678 MEDIUM

Blog2Social: Social Media Auto Post & Scheduler - Info Disclosure

CVE-2024-32236 LOW

CmsEasy < 7.7.0 - Sensitive Information Exposure via Index.php Update Function

CVE-2024-3733 MEDIUM

Essential Addons for Elementor - Info Disclosure

CVE-2024-22808 HIGH

Tormach xsTECH CNC Router, PathPilot Controller v2.9.6 - DoS

CVE-2024-29968 HIGH

Brocade SANnav <2.3.1-2.3.0a - Info Disclosure

CVE-2024-29965 MEDIUM

Brocade SANnav <2.3.1-2.3.0a - Info Disclosure

CVE-2024-21117 MEDIUM

Oracle Outside In Technology 8.5.6 and 8.5.7 - Authenticated Command Injection in Outside In Core

CVE-2024-23561 MEDIUM

HCL DevOps Deploy 8.0.0.0-8.0.0.9 and HCL Launch 7.0.0.0-7.0.5.1 - Insecure Storage of Sensitive Information

CVE-2024-30917 MEDIUM

eProsima FastDDS < 2.14.0 - DoS and Info Disclosure via DurabilityService QoS

CVE-2024-31278 MEDIUM

Premium Addons for Elementor <= 4.10.22 - Sensitive Data Exposure

CVE-2024-2974 MEDIUM

Essential Addons for Elementor - Info Disclosure

CVE-2024-27232 MEDIUM

Android - Out-of-Bounds Read in asn1_ec_pkey_parse

CVE-2024-20050 MEDIUM

Yocto - Insecure Storage of Sensitive Information

CVE-2024-25655 MEDIUM

AVSystem UMP 23.07.0.16567~LTS - Info Disclosure

CVE-2024-28069 HIGH

Mitel MiContact Center Business <= 10.0.0.4 - Unauthenticated Sensitive Information Disclosure via Legacy Chat Component

CVE-2024-23290 MEDIUM

iPadOS < 17.4 - Unprotected User Data Exposure via Logic Issue

CVE-2024-23241 MEDIUM

iPadOS < 17.4 - Sensitive User Information Leak via Insecure Storage

CVE-2024-23232 LOW

macOS Sonoma <14.4 - Info Disclosure

CVE-2024-23205 MEDIUM

iPadOS < 17.4 and macOS 14.0-14.4 - Unprotected User Data Exposure via Log Entries

CVE-2024-1936 HIGH

Thunderbird < 115.8.1 - Insecure Storage of Sensitive Information via Email Subject Cache Contamination

CVE-2024-21826 MEDIUM

OpenHarmony 3.2-3.2.4 - Insecure Storage of Sensitive Information

CVE-2024-26559 MEDIUM

uverif 2.0 - Insecure Storage of Sensitive Information

CVE-2024-22371 LOW

Apache Camel <4.4.0 - Info Disclosure

CVE-2024-0037 LOW

Android - Missing Authorization in SaveUi.java

CVE-2024-25940 MEDIUM

FreeBSD - Insecure Storage of Sensitive Information via bhyveload Host Path Access

Previous Page 8 of 15 Next

Details

Vulnerabilities 373

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy