CVE-2026-22576

A storing passwords in a recoverable format vulnerability in Fortinet FortiSOAR PaaS 7.6.0 through 7.6.4, FortiSOAR PaaS 7.5.0 through 7.5.2, FortiSOAR PaaS 7.4 all versions, FortiSOAR PaaS 7.3 all versions, FortiSOAR on-premise 7.6.0 through 7.6.4, FortiSOAR on-premise 7.5.0 through 7.5.2,...

Cisco Catalyst SD-WAN Manager Storing Passwords in a Recoverable Format Vulnerability

Cisco Catalyst SD-WAN Manager contains a storing passwords in a recoverable format vulnerability that allows an authenticated, local attacker to gain DCA user privileges by accessing a credential file for the DCA user on the filesystem as a low-privileged user...

Fortinet FortiSOAR PaaS和Fortinet FortiSOAR on-premise 安全漏洞

Fortinet FortiSOAR PaaS and Fortinet FortiSOAR on-premise are security orchestration, automation, and response software developed by Fortinet, a US-based company. Both versions of Fortinet FortiSOAR PaaS and Fortinet FortiSOAR on-premise have security vulnerabilities. These vulnerabilities stem...

Fortinet FortiSOAR PaaS和Fortinet FortiSOAR on-premise 安全漏洞

Fortinet FortiSOAR PaaS and Fortinet FortiSOAR on-premise are security orchestration, automation, and response software developed by Fortinet, a US-based company. Both versions of Fortinet FortiSOAR PaaS and FortiSOAR on-premise have security vulnerabilities. These vulnerabilities stem from stori...

CVE-2025-14295 Automated Logic WebCTRL and Carrier i-Vu Session Fixation

Storing Passwords in a Recoverable Format vulnerability in Automated Logic WebCTRL on Windows, Carrier i-Vu on Windows. Storing Passwords in a Recoverable Format vulnerability CWE-257 in the Web session management component allows an attacker to access stored passwords in a recoverable format whi...

CVE-2021-28492

Unisys Stealth core 5.x before 5.0.048.0, 5.1.x before 5.1.017.0, and 6.x before 6.0.037.0 stores passwords in a recoverable format...

CVE-2025-8307

Summary (CVE-2025-8307 / 8306) : Asseco InfoMedica Infomedica Plus stores user passwords in an encoded form. A low-privilege user can obtain encoded passwords due to insufficient access control, enabling potential credential exposure. The CVE-2025-8306 (Improper Access Control) and CVE-2025-8307 ...

EUVD-2020-30223

Malware in sbrugna...

Storing Passwords in a Recoverable Format

Overview org.xwiki.platform:xwiki-platform-export-pdf-api is an API for multipage PDF export that supports both client-side printing, using the user's web browser, and server-side printing, e.g. using a headless Chrome browser that may run inside a Docker container. Affected versions of this...

The vulnerability of Unitronics Vision’s microprogrammed logic controllers, related to the storage of passwords in a recoverable format, allows a hacker to obtain the “Information Mode” password in plain text.

The vulnerability of the microprogrammed logic controllers from Unitronics Vision relates to the storage of passwords in a recoverable format. Exploiting this vulnerability could allow an attacker, operating remotely, to obtain the “Information Mode” password in plain text...

The vulnerability of the structural component of the database management system (DBMS) Redis software used in ABB eSOMS, a production process management system, allows a hacker to gain unauthorized access to protected information.

The vulnerability of the structural component of the Redis database management system for managing manufacturing processes in ABB eSOMS lies in the storage of passwords in a recoverable format. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected informatio...

PT-2023-21983 · Pimcore · Pimcore/Customer-Data-Framework

Name of the Vulnerable Software and Affected Versions: pimcore/customer-data-framework versions prior to 3.3.10 Description: The issue concerns storing passwords in a recoverable format. An attacker can exploit this by enumerating passwords for specific IDs, potentially leading to the disclosure ...

SUSE CVE-2020-8296

Nextcloud Server prior to 20.0.0 stores passwords in a recoverable format even when external storage is not configured...

FUJIFILM Driver Distributor 加密问题漏洞

FUJIFILM Driver Distributor is a driver from FUJIFILM. A security vulnerability exists in FUJIFILM Driver Distributor v2.2.3.1 and earlier versions, which originates from passwords being stored in a recoverable format, and encrypted administrator credentials can be decrypted if an attacker gains...

CVE-2022-32519

A CWE-257: Storing Passwords in a Recoverable Format vulnerability exists that could result in unwanted access to a DCE instance when performed over a network by a malicious third-party. Affected Products: Data Center Expert Versions prior to V7.9.0...

Schneider Electric StruxureWare Data Center Expert 安全漏洞

Schneider Electric StruxureWare Data Center Expert StruxureWare Data Center Management Expert is a monitoring software from the French company Schneider Electric Schneider Electric. Suitable for a variety of organizations to monitor their company-wide power, cooling, security, environment. A...

Siemens SCALANCE Products

As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please seeSiemens' ProductCERT Security Advisories CERT Services | Services |...

The vulnerability of the file system of Juniper Networks Junos OS router series cSRX allows a attacker to enhance their privileges.

The vulnerability of the file system of Juniper Networks Junos OS router series cSRX lies in the way passwords are stored in a recoverable format. Exploiting this vulnerability can allow attackers to increase their privileges...

CVE-2022-22251

On cSRX Series devices software permission issues in the container filesystem and stored files combined with storing passwords in a recoverable format in Juniper Networks Junos OS allows a local, low-privileged attacker to elevate their permissions to take control of any instance of a cSRX softwa...

PT-2022-22386 · Abb · Abb Zenon

Name of the Vulnerable Software and Affected Versions: ABB Zenon version 8.20 Description: The issue allows an attacker to store passwords in a recoverable format, potentially enabling them to add more network clients. These clients may then monitor various activities of the Zenon system...