Lucene search
K

25 matches found

CNNVD
CNNVD
added 2026/05/22 12:0 a.m.9 views

Avantra 安全漏洞

Avantra is a SAP software developed by the Avantra company. Versions of Avantra prior to 25.3.0 contained security vulnerabilities. These vulnerabilities stemmed from unprotected credential transmission, which could lead to sniffing attacks...

9.1CVSS5.8AI score0.00192EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/13 12:0 a.m.8 views

curl 安全漏洞

curl is an open-source tool developed by cURL for transferring data from a server or to a server. Curl has a security vulnerability that stems from an error in proxy credential transmission, which may lead to the incorrect transmission of credentials from one proxy to another...

5.9CVSS5.8AI score0.00639EPSS
Exploits1References1
NVD
NVD
added 2026/02/27 6:16 p.m.9 views

CVE-2026-27752

SODOLA SL902-SWTGW124AS firmware versions through 200.1.20 transmit authentication credentials over unencrypted HTTP, allowing attackers to capture credentials. An attacker positioned to observe network traffic between a user and the device can intercept credentials and reuse them to gain...

8.2CVSS0.00193EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.6 views

PT-2025-50291

Name of the Vulnerable Software and Affected Versions ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier Description The software contains an issue with insufficiently protected credentials, potentially allowing limited unauthorized write access. An attacker could exploit improperly stored ...

5.3CVSS5.8AI score0.00374EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-15080

Malware in sbrugna...

9.8CVSS9.2AI score0.00836EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-4377

Malware in sbrugna...

9.8CVSS9.4AI score0.01853EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-46811

Malicious code in bioql PyPI...

6CVSS6.3AI score0.00208EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2025-18665

Malicious code in bioql PyPI...

9.8CVSS6.5AI score0.00492EPSS
Exploits2References2
OSV
OSV
added 2025/08/18 10:15 p.m.3 views

CVE-2025-54156

The Sante PACS Server Web Portal sends credential information without encryption...

7.5CVSS5.8AI score0.0019EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/18 9:21 p.m.6 views

CVE-2025-54156 Santesoft Sante PACS Server Cleartext Transmission of Sensitive Information

The Sante PACS Server Web Portal sends credential information without encryption...

9.1CVSS0.0019EPSS
Exploits0References1
NVD
NVD
added 2025/08/06 3:15 p.m.3 views

CVE-2025-36020

IBM Guardium Data Protection could allow a remote attacker to obtain sensitive information due to cleartext transmission of sensitive credential information...

7.5CVSS0.00199EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/06/23 8:41 a.m.6 views

CVE-2025-26199

CloudClassroom-PHP-Project v1.0 is affected by an insecure credential transmission vulnerability. The application transmits passwords over unencrypted HTTP during the login process, exposing sensitive credentials to potential interception by network-based attackers. A remote attacker with access ...

9.8CVSS8.1AI score0.00492EPSS
Exploits2References1
Cvelist
Cvelist
added 2025/05/22 12:51 a.m.12 views

CVE-2025-3480 MedDream WEB DICOM Viewer Cleartext Transmission of Credentials Information Disclosure Vulnerability

MedDream WEB DICOM Viewer Cleartext Transmission of Credentials Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of MedDream WEB DICOM Viewer. Authentication is not required to exploit this...

5.3CVSS0.00136EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/05/08 12:0 a.m.3 views

Pixmeo OsiriX MD 安全漏洞

Pixmeo OsiriX MD is a medical image processing software from Pixmeo designed for DICOM image analysis and 3D reconstruction. A security vulnerability exists in Pixmeo OsiriX MD that stems from unencrypted transmission of credential information, which could lead to credential disclosure...

9.3CVSS6.5AI score0.00242EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/04/25 12:0 a.m.23 views

JetBrains Toolbox App < 2.6 Multiple Vulnerabilities

The version of JetBrains Toolbox App installed on the remote host is prior to 2.6. It is, therefore, affected by multiple vulnerabilities: - In JetBrains Toolbox App before 2.6 command injection in SSH plugin was possible CVE-2025-43012 - In JetBrains Toolbox App before 2.6 host key verification...

9.8CVSS5.6AI score0.00663EPSS
Exploits0References5
NVD
NVD
added 2025/04/17 4:15 p.m.22 views

CVE-2025-43013

In JetBrains Toolbox App before 2.6 unencrypted credential transmission during SSH authentication was possible...

7.5CVSS0.00134EPSS
Exploits0References1
CVE
CVE
added 2025/04/17 3:56 p.m.69 views

CVE-2025-43013

JetBrains Toolbox App prior to version 2.6 is affected by CVE-2025-43013 due to unencrypted credential transmission during SSH authentication. The issue is documented across multiple sources (Red Hat, NVD, CNVD, Nessus plugin, and PT Security) and is tied specifically to the SSH plugin’s handling...

7.5CVSS7.2AI score0.00134EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/02/19 12:0 a.m.3 views

Hitachi Vantara Pentaho Data Integration & Analytics 安全漏洞

Hitachi Vantara Pentaho Data Integration & Analytics is a data integration and analytics system from Hitachi, Ltd Hitachi, Japan. A security vulnerability exists in Hitachi Vantara Pentaho Data Integration & Analytics that stems from the use of an insecure method of transmitting authentication...

6.3CVSS6.6AI score0.00265EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/10/23 12:0 a.m.7 views

PT-2024-13897 · Ibm · Ibm Cics Transaction Gateway For Multiplatforms

Name of the Vulnerable Software and Affected Versions: IBM CICS Transaction Gateway for Multiplatforms versions 9.2 through 9.3 Description: The issue concerns the transmission and storage of authentication credentials by the software, which uses an insecure method. This makes the credentials...

7.5CVSS7.1AI score0.0039EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2024/03/31 12:0 a.m.5 views

PT-2024-13898 · Ibm · Ibm Cics Transaction Gateway For Multiplatforms

Name of the Vulnerable Software and Affected Versions: IBM CICS Transaction Gateway for Multiplatforms versions 9.2 through 9.3 Description: The issue could disclose sensitive path information to an attacker through debugging or error messages. It also involves the transmission or storage of...

4.9CVSS6.7AI score0.00322EPSS
Exploits0References6
Rows per page
Query Builder