The vulnerability of OPPO’s 5G router, related to the insecure storage of confidential information, allows a intruder to gain unauthorized access to protected data.

The vulnerability of OPPO’s 5G router is related to the insecure storage of confidential information. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information...

CVE-2021-25524

Insecure storage of device information in Contacts prior to version 12.7.05.24 allows attacker to get Samsung Account ID...

CVE-2021-25524

Insecure storage of device information in Contacts prior to version 12.7.05.24 allows attacker to get Samsung Account ID...

CVE-2021-25522

Insecure storage of sensitive information vulnerability in Smart Capture prior to version 4.8.02.10 allows attacker to access victim's captured images without permission...

CVE-2021-25523

Insecure storage of device information in Samsung Dialer prior to version 12.7.05.24 allows attacker to get Samsung Account ID...

Information disclosure

Insecure storage of device information in Contacts prior to version 12.7.05.24 allows attacker to get Samsung Account ID...

CVE-2021-25524

CVE-2021-25524 affects Samsung Contacts prior to version 12.7.05.24, where insecure storage of device information can disclose Samsung Account IDs. The root cause is improper handling/storage of device data within the Contacts component. Impact is limited to information disclosure (Samsung Accoun...

CVE-2021-25524

Insecure storage of device information in Contacts prior to version 12.7.05.24 allows attacker to get Samsung Account ID...

CVE-2021-25523

Insecure storage of device information in Samsung Dialer prior to version 12.7.05.24 allows attacker to get Samsung Account ID...

CVE-2021-25523

CVE-2021-25523 affects the Samsung Dialer prior to version 12.7.05.24 . Root cause: insecure storage of device information that can disclose a Samsung Account ID. Impact: local attacker could obtain the Samsung Account ID. Affected component: Samsung Dialer app. Remediation: upgrade to 12.7.05.24...

CVE-2021-25522

CVE-2021-25522 affects Samsung Smart Capture before version 4.8.02.10. The root cause is insecure storage of captured images, allowing an attacker with local access to retrieve victims’ captured images without permission. No exploitation details are provided in the documents. Mitigation: update t...

CVE-2021-25522

Insecure storage of sensitive information vulnerability in Smart Capture prior to version 4.8.02.10 allows attacker to access victim's captured images without permission...

Samsung Smart Capture 安全漏洞

Samsung Smart Capture is an APK from Samsung that allows you to select parts of a video during playback and save them as animated GIFs. A security vulnerability exists in Samsung Smart Capture before 4.8.02.10, which stems from the software not storing sensitive information securely and allows an...

CVE-2021-43963

An issue was discovered in Couchbase Sync Gateway 2.7.0 through 2.8.2. The bucket credentials used to read and write data in Couchbase Server were insecurely being stored in the metadata within sync documents written to the bucket. Users with read access could use these credentials to obtain writ...

Design/Logic Flaw

An issue was discovered in Couchbase Sync Gateway 2.7.0 through 2.8.2. The bucket credentials used to read and write data in Couchbase Server were insecurely being stored in the metadata within sync documents written to the bucket. Users with read access could use these credentials to obtain writ...

CVE-2021-43963

An issue was discovered in Couchbase Sync Gateway 2.7.0 through 2.8.2. The bucket credentials used to read and write data in Couchbase Server were insecurely being stored in the metadata within sync documents written to the bucket. Users with read access could use these credentials to obtain writ...

CVE-2021-29753

IBM Business Automation Workflow 18. 19, 20, 21, and IBM Business Process Manager 8.5 and d8.6 transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval...

CVE-2021-25502

A vulnerability of storing sensitive information insecurely in Property Settings prior to SMR Nov-2021 Release 1 allows attackers to read ESN value without priviledge...

The vulnerability of the Git-based software platform for collaborative code development on GitLab, related to the insecure storage of critical information, allows attackers to gain access to confidential data.

The vulnerability of the Git-based software platform for collaborative code development on GitLab is related to the insecure storage of critical information. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain access to confidential data...

CVE-2021-28813

A vulnerability involving insecure storage of sensitive information has been reported to affect QSW-M2116P-2T2S and QNAP switches running QuNetSwitch. If exploited, this vulnerability allows remote attackers to read sensitive information by accessing the unrestricted storage mechanism.We have...