Lucene search
K

7 matches found

Cvelist
Cvelist
added 2025/10/30 9:22 p.m.9 views

CVE-2025-34271 Nagios Log Server < 2024R2.0.2 Cluster Manager Credential Requests Sent Over Plaintext

Nagios Log Server versions prior to 2024R2.0.2 contain a vulnerability in the cluster manager component when requesting sensitive credentials from peer nodes over an unencrypted channel even when SSL/TLS is enabled in the product configuration. As a result, an attacker positioned on the network...

8.7CVSS0.00678EPSS
Exploits0References3
CVE
CVE
added 2025/08/18 9:21 p.m.15 views

CVE-2025-54156

CVE-2025-54156 concerns the Sante PACS Server Web Portal, where credential information is transmitted without encryption. The advisory set across sources indicates the web portal transmits credentials in cleartext, creating a confidentiality risk (CVE-2025-54156). The CVE is evaluated with high i...

9.1CVSS4.9AI score0.0019EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/10/17 12:0 a.m.7 views

PT-2024-38563 · Unknown · Ewon Flexy 202

Name of the Vulnerable Software and Affected Versions: EWON FLEXY 202 affected versions not specified Description: The issue concerns the transmission of credentials using a weak encoding method, specifically base64. An attacker present in the network can intercept the traffic and decode the...

8.2CVSS6.6AI score0.00278EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/07/30 12:0 a.m.5 views

PT-2024-29610 · Opentext · Opentext Documentum Server

Name of the Vulnerable Software and Affected Versions: OpenText Documentum Server versions 16.7 through 23.4 Description: The issue is related to an Unprotected Transport of Credentials vulnerability in OpenText Documentum Server, which could allow Credential Stuffing. Recommendations: For versio...

7.1CVSS7.1AI score0.00154EPSS
Exploits0References5
OSV
OSV
added 2019/11/14 12:15 a.m.4 views

CVE-2019-3640

Unprotected Transport of Credentials in ePO extension in McAfee Data Loss Prevention 11.x prior to 11.4.0 allows remote attackers with access to the network to collect login details to the LDAP server via the ePO extension not using a secure connection when testing LDAP connectivity...

6.5CVSS5.8AI score0.00528EPSS
Exploits0References1
OSV
OSV
added 2019/08/15 5:15 p.m.2 views

CVE-2019-9013

An issue was discovered in 3S-Smart CODESYS V3 products. The application may utilize non-TLS based encryption, which results in user credentials being insufficiently protected during transport. All variants of the following CODESYS V3 products in all versions containing the CmpUserMgr component a...

8.8CVSS7.5AI score0.00303EPSS
Exploits0References2
OSV
OSV
added 2017/12/20 6:29 p.m.5 views

CVE-2017-1694

IBM Integration Bus 9.0 and 10.0 transmits user credentials in plain in clear text which can be read by an attacker using man in the middle techniques. IBM X-Force ID: 134165...

8.1CVSS5.8AI score0.00815EPSS
Exploits0References3
Rows per page
Query Builder