The vulnerability of the Xerox Workplace Suite print management server, related to the insecure storage of confidential information, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Xerox Workplace Suite print management server is related to the insecure storage of confidential information. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

CVE-2025-0714 Insecure storage of sensitive information in MobaXTerm <25.0.

The vulnerability exists in the password storage of Mobateks MobaXterm in versions below 25.0. MobaXTerm uses an initialisation vector IV consisting only of zero bytes and a master key to encrypt each password individually. In the default configuration, on opening MobaXTerm, the user is prompted...

The vulnerability of the Messages component of the MacOS operating system allows a hacker to gain unauthorized access to protected information.

The vulnerability of the Messages component in the MacOS operating system is related to the insecure storage of confidential information. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerability of the Security component of the MacOS operating system allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Security component of the MacOS operating system is related to the insecure storage of confidential information. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

WordPress plugin JS Help Desk 信息泄露漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. An information disclosure vulnerabili...

The vulnerability of macOS operating systems, related to the insecure storage of confidential information, allows attackers to gain unauthorized access to protected data.

The vulnerability of macOS operating systems lies in the insecure storage of confidential information. Exploiting this vulnerability can allow a remote attacker to gain unauthorized access to protected information...

The vulnerability of macOS operating systems, related to the insecure storage of confidential information, allows attackers to gain unauthorized access to protected data.

The vulnerability of macOS operating systems lies in the insecure storage of confidential information. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

WordPress plugin Majestic Support 信息泄露漏洞

WordPress and the WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. An information disclosure...

Vulnerability of macOS operating systems, allowing attackers to disclose sensitive information

The vulnerability of Spotlight search engine in macOS operating systems is related to the insecure storage of confidential information. Exploiting this vulnerability can allow an attacker to disclose protected information...

The vulnerability of the FaceTime video/audio call technology in macOS operating systems allows attackers to disclose protected information.

The vulnerability of the FaceTime video/audio call technology in macOS operating systems lies in the insecure storage of confidential information. Exploiting this vulnerability could allow an attacker to disclose protected information...

CVE-2022-1044

Sensitive Data Exposure Due To Insecure Storage Of Profile Image in GitHub repository polonel/trudesk prior to v1.2.1...

CVE-2022-1021

Insecure Storage of Sensitive Information in GitHub repository chatwoot/chatwoot prior to 2.6.0...

CVE-2022-0881

Insecure Storage of Sensitive Information in GitHub repository chocobozzz/peertube prior to 4.1.1...

CVE-2022-44619

Insecure storage of sensitive information in the IntelR DCM software before version 5.1 may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2024-39776

Avtec Outpost stores sensitive information in an insecure location without proper access controls in place...

PT-2025-5285 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 15.3 Description: The issue is related to the insecure storage of confidential information in macOS, allowing an attacker to gain unauthorized access to protected data. An access issue was addressed with additional...

PT-2025-5281 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.7.3 macOS versions prior to 14.7.3 macOS versions prior to 15.3 Description: The issue is related to insecure storage of confidential information in the MacOs operating system's Security component. It may allow an...

CVE-2024-52328

The CVE-2024-52328 entry describes ECOVACS robot lawnmowers and vacuums that insecurely store audio files used to indicate that the camera is on. The underlying issue is insecure storage on the /data filesystem, which could allow an attacker with filesystem access to delete or modify the warning ...

ECOVACS robot lawnmowers和vacuums 安全漏洞

ECOVACS robot vacuums and ECOVACS robot lawnmowers are both products of the Chinese company ECOVACS.ECOVACS robot vacuums are a line of vacuum cleaners.ECOVACS robot lawnmowers are a line of lawnmowers. The ECOVACS robot lawnmowers and vacuums suffer from a security vulnerability that stems from...

The vulnerabilities of the components of Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK, and the Oracle Java SE software platform allow attackers to gain unauthorized access to protected information.

The vulnerability of the components of Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK, and the Oracle Java SE software platform lies in the insecure storage of confidential information. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access...