UBUNTU-CVE-2023-49347

Temporary data passed between application components by Budgie Extras Windows Previews could potentially be viewed or manipulated. The data is stored in a location that is accessible to any user who has local access to the system. Attackers may read private information from windows, present false...

The vulnerability of the Digital Guardian Agent, which stems from the insecure storage of confidential information, allows attackers to delete this application.

The vulnerability of the Digital Guardian Agent relates to the insecure storage of confidential information. Exploiting this vulnerability could allow a hacker to delete this application...

CVE-2023-43777

Eaton easySoft software is used to program easy controllers and displays for configuring, programming and defining parameters for all the intelligent relays. This software has a password protection functionality to secure the project file from unauthorized access. This password was being stored...

Design/Logic Flaw

Eaton easySoft software is used to program easy controllers and displays for configuring, programming and defining parameters for all the intelligent relays. This software has a password protection functionality to secure the project file from unauthorized access. This password was being stored...

CVE-2023-43777 Insecure storage of password in easySoft

Eaton easySoft software is used to program easy controllers and displays for configuring, programming and defining parameters for all the intelligent relays. This software has a password protection functionality to secure the project file from unauthorized access. This password was being stored...

CVE-2023-43777

CVE-2023-43777 affects Eaton easySoft software used to program easy controllers and displays. The root issue is insecure storage of the project password, which could be retrieved by skilled adversaries, leading to potential unauthorized access to protected files. Documents confirm the password pr...

CVE-2022-42451

Certain credentials within the BigFix Patch Management Download Plug-ins are stored insecurely and could be exposed to a local privileged user...

CVE-2022-42451 HCL BigFix Patch Management is vulnerable to insecurely stored credentials

Certain credentials within the BigFix Patch Management Download Plug-ins are stored insecurely and could be exposed to a local privileged user...

The vulnerability of backup and data recovery software on computers and servers with Acronis Agent lies in the insufficient protection of registration data, allowing attackers to obtain confidential information.

The vulnerability of backup and data recovery software on computers and servers related to Acronis Agent lies in the insufficient protection of registration data. Exploiting this vulnerability can allow attackers to obtain confidential information...

The vulnerability of the MODULYS GP (MOD3GP-SY-120K) web-based management application allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the MODULYS GP MOD3GP-SY-120K web-based management application relates to the insecure storage of confidential information. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information...

CVE-2023-32184

A Insecure Storage of Sensitive Information vulnerability in openSUSE opensuse-welcome allows local attackers to execute code as the user that runs opensuse-welcome if a custom layout is chosen This issue affects opensuse-welcome: from 0.1 before 0.1.9+git.35.4b9444a...

Information disclosure

A Insecure Storage of Sensitive Information vulnerability in openSUSE opensuse-welcome allows local attackers to execute code as the user that runs opensuse-welcome if a custom layout is chosen This issue affects opensuse-welcome: from 0.1 before 0.1.9+git.35.4b9444a...

CVE-2023-32184

A Insecure Storage of Sensitive Information vulnerability in openSUSE opensuse-welcome allows local attackers to execute code as the user that runs opensuse-welcome if a custom layout is chosen This issue affects opensuse-welcome: from 0.1 before 0.1.9+git.35.4b9444a...

openSUSE opensuse-welcome Security Vulnerabilities

openSUSE is a set of Linux-based free operating systems and open source community projects from SUSE Germany. A security vulnerability exists in opensuse-welcome versions 0.1 through 0.1.9+git.35.4b9444a, which stems from an issue with the insecure storage of sensitive information that could allo...

CVE-2023-41965 Socomec MOD3GP-SY-120K Insecure Storage of Sensitive Information

Sending some requests in the web application of the vulnerable device allows information to be obtained due to the lack of security in the authentication process...

CVE-2023-41965 Socomec MOD3GP-SY-120K Insecure Storage of Sensitive Information

Sending some requests in the web application of the vulnerable device allows information to be obtained due to the lack of security in the authentication process...

CVE-2023-40728

A vulnerability has been identified in QMS Automotive All versions V12.39. The QMS.Mobile module of the affected application stores sensitive application data in an external insecure storage. This could allow an attacker to alter content, leading to arbitrary code execution or denial-of-service...

CVE-2023-37879

Insecure storage of sensitive information in Wing FTP Server User Web Client allows information elicitation.This issue affects Wing FTP Server: = 7.2.0...

Information disclosure

Insecure storage of sensitive information in Wing FTP Server User Web Client allows information elicitation.This issue affects Wing FTP Server: = 7.2.0...

CVE-2023-37879

CVE-2023-37879 affects Wing FTP Server (User Web Client) up to version 7.2.0, where insecure storage of sensitive information enables information elicitation. Multiple sources confirm the issue as a sensitive-info disclosure via the User Web Client, with impact on confidentiality and no indicatio...