CVE-2025-64122

Insufficiently Protected Credentials vulnerability in Nuvation Energy Multi-Stack Controller MSC allows Signature Spoofing by Key Theft.This issue affects Multi-Stack Controller MSC: through 2.5.1...

CVE-2025-58130 Apache Fineract: Server Key not masked

Insufficiently Protected Credentials vulnerability in Apache Fineract. This issue affects Apache Fineract: through 1.11.0. The issue is fixed in version 1.12.1. Users are encouraged to upgrade to version 1.13.0, the latest release...

CVE-2025-64898

ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier are affected by an Insufficiently Protected Credentials vulnerability that could result in limited unauthorized write access. An attacker could leverage this vulnerability to gain unauthorized access by exploiting improperly stored or...

CVE-2025-64898 ColdFusion | Insufficiently Protected Credentials (CWE-522)

ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier are affected by an Insufficiently Protected Credentials vulnerability that could result in limited unauthorized write access. An attacker could leverage this vulnerability to gain unauthorized access by exploiting improperly stored or...

CVE-2025-36096 AIX Insufficiently Protected Credentials

IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 stores NIM private keys used in NIM environments in an insecure way which is susceptible to unauthorized access by an attacker using man in the middle techniques...

EUVD-2020-4645

Malware in sbrugna...

EUVD-2019-2250

Malware in sbrugna...

EUVD-2020-4628

Malware in sbrugna...

EUVD-2022-28109

Malicious code in bioql PyPI...

EUVD-2025-24243

Malicious code in bioql PyPI...

EUVD-2024-37246

Malicious code in bioql PyPI...

EUVD-2022-31394

Malicious code in bioql PyPI...

EUVD-2025-10231

Malicious code in bioql PyPI...

CVE-2025-10880 Insufficiently Protected Credentials in Dingtian DT-R002

All versions of Dingtian DT-R002 are vulnerable to an Insufficiently Protected Credentials vulnerability that could allow an attacker to extract the proprietary "Dingtian Binary" protocol password by sending an unauthenticated GET request...

CVE-2025-10879

CVE-2025-10879 affects all versions of the Dingtian DT-R002. The vulnerability is described as Insufficiently Protected Credentials that could allow an unauthenticated attacker to retrieve the current user’s username (and, per ICS docs, potentially extract the proprietary protocol password by an ...

CVE-2025-10879 Insufficiently Protected Credentials in Dingtian DT-R002

All versions of Dingtian DT-R002 are vulnerable to an Insufficiently Protected Credentials vulnerability that could allow an attacker to retrieve the current user's username without authentication...

CVE-2025-40838 Ericsson Indoor Connect 8855 - Insufficiently Protected Credentials Vulnerability

Ericsson Indoor Connect 8855 contains a vulnerability where server-side security can be bypassed in the client which if exploited can lead to unauthorized disclosure of certain information...

PT-2025-32564 · Abb · Abb Aspect

Name of the Vulnerable Software and Affected Versions: ABB Aspect versions prior to 3.08.04-s01 Description: The software contains an insufficiently protected credentials issue. Recommendations: Update to version 3.08.04-s01 or later...

CVE-2025-38739

Dell Digital Delivery, before version 5.6.1.0, contains an Insufficiently Protected Credentials vulnerability that can allow a remote, unauthenticated attacker to cause Information Disclosure. The flaw affects Dell Digital Delivery software and stems from inadequate credential protection as descr...

CVE-2020-9523

Insufficiently protected credentials vulnerability on Micro Focus enterprise developer and enterprise server, affecting all version prior to 4.0 Patch Update 16, and version 5.0 Patch Update 6. The vulnerability could allow an attacker to transmit hashed credentials for the user account running t...