4774 matches found
PT-2025-23100 · Unknown · Telemessage
Name of the Vulnerable Software and Affected Versions: TeleMessage service through 2025-05-05 Description: The issue concerns the TeleMessage service relying on client-side MD5 hashing for authentication credentials. This has been exploited in the wild. The service accepts the hash as the...
CVE-2024-22345
IBM TXSeries for Multiplatforms 8.2 transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval. IBM X-Force ID: 280192...
CVE-2023-50310
IBM CICS Transaction Gateway for Multiplatforms 9.2 and 9.3 transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval...
CVE-2022-28214
During an update of SAP BusinessObjects Enterprise, Central Management Server CMS - versions 420, 430, authentication credentials are being exposed in Sysmon event logs. This Information Disclosure could cause a high impact on systems’ Confidentiality, Integrity, and Availability...
CVE-2021-21432
Vela is a Pipeline Automation CI/CD framework built on Linux container technology written in Golang. An authentication mechanism added in version 0.7.0 enables some malicious user to obtain secrets utilizing the injected credentials within the /.netrc file. Refer to the referenced GitHub Security...
CVE-2019-10705
Western Digital SanDisk X600 devices in certain configurations, a vulnerability in the access control mechanism of the drive may allow data to be decrypted without knowledge of proper authentication credentials...
CVE-2017-1659
"HCL iNotes is susceptible to a Cross-Site Scripting XSS Vulnerability. An attacker could use this vulnerability to steal the victim's cookie-based authentication credentials."...
CVE-2003-1567
The undocumented TRACK method in Microsoft Internet Information Services IIS 5.0 returns the content of the original request in the body of the response, which makes it easier for remote attackers to steal cookies and authentication credentials, or bypass the HttpOnly protection mechanism, by usi...
CVE-2025-1531
Authentication credentials leakage vulnerability in Hitachi Ops Center Analyzer viewpoint.This issue affects Hitachi Ops Center Analyzer viewpoint: from 10.0.0-00 before 11.0.4-00...
CVE-2025-1531
The CVE-2025-1531 issue affects Hitachi Ops Center Analyzer viewpoint. Affected component: the viewpoint module of Hitachi Ops Center Analyzer (versions 10.0.0-00 through before 11.0.4-00). Root cause/result: authentication credentials leakage that can expose credentials. Impact: credential discl...
CVE-2025-1531 Authentication credentials leakage vulnerability in Hitachi Ops Center Analyzer viewpoint OVF
Authentication credentials leakage vulnerability in Hitachi Ops Center Analyzer viewpoint.This issue affects Hitachi Ops Center Analyzer viewpoint: from 10.0.0-00 before 11.0.4-00...
CVE-2025-1531 Authentication credentials leakage vulnerability in Hitachi Ops Center Analyzer viewpoint OVF
Authentication credentials leakage vulnerability in Hitachi Ops Center Analyzer viewpoint.This issue affects Hitachi Ops Center Analyzer viewpoint: from 10.0.0-00 before 11.0.4-00...
Security Bulletin: Vulnerability in Jinja2 affects IBM Cloud Pak for Data System 1.0(CPDS 1.0)[CVE-2024-34064].
Summary The Jinja2 package is used by IBM Cloud Pak for Data System 1.0. IBM Cloud Pak for Data System 1.0 has addressed the applicable CVE CVE-2024-34064. Vulnerability Details CVEID:CVE-2024-34064 DESCRIPTION: Jinja is vulnerable to cross-site scripting, caused by the acceptance of keys...
PT-2025-18957 · Browsers · Browsers
Name of the Vulnerable Software and Affected Versions: Browser Use versions prior to 0.1.45 Description: The issue arises from the mishandling of URL parsing of allowed domains, allowing userinfo to be placed in the authority component. This can lead to a whitelist bypass, exposing internal...
Tenda RX2 Pro 安全漏洞
Tenda RX2 Pro is a high performance WiFi 6 signal amplifier from Tenda China. The Tenda RX2 Pro suffers from an information disclosure vulnerability that can be exploited by an attacker to collect credentials for authentication...
CVE-2024-46899
Hitachi Ops Center Common Services within Hitachi Ops Center Analyzer viewpoint OVF contains an authentication credentials leakage vulnerability.This issue affects Hitachi Ops Center Common Services: from 10.0.0-00 before 11.0.0-04; Hitachi Ops Center Analyzer viewpoint OVF: from 10.0.0-00 before...
CVE-2024-46899 Authentication credentials leakage vulnerability in Hitachi Ops Center Common Services within Hitachi Ops Center Analyzer viewpoint OVF
Hitachi Ops Center Common Services within Hitachi Ops Center Analyzer viewpoint OVF contains an authentication credentials leakage vulnerability.This issue affects Hitachi Ops Center Common Services: from 10.0.0-00 before 11.0.0-04; Hitachi Ops Center Analyzer viewpoint OVF: from 10.0.0-00 before...
CVE-2024-46899 Authentication credentials leakage vulnerability in Hitachi Ops Center Common Services within Hitachi Ops Center Analyzer viewpoint OVF
Hitachi Ops Center Common Services within Hitachi Ops Center Analyzer viewpoint OVF contains an authentication credentials leakage vulnerability.This issue affects Hitachi Ops Center Common Services: from 10.0.0-00 before 11.0.0-04; Hitachi Ops Center Analyzer viewpoint OVF: from 10.0.0-00 before...
CVE-2024-46899
Hitachi Ops Center: CVE-2024-46899 is linked to an authentication credentials leakage affecting two components. Affected products are Hitachi Ops Center Common Services and Hitachi Ops Center Analyzer viewpoint OVF, both versions 10.0.0-00 through 11.0.0-04. Root cause is improper handling of aut...
PT-2025-17482 · Hitachi · Hitachi Ops Center Analyzer +1
Name of the Vulnerable Software and Affected Versions: Hitachi Ops Center Common Services versions 10.0.0-00 through 11.0.0-04 Hitachi Ops Center Analyzer viewpoint OVF versions 10.0.0-00 through 11.0.0-04 Description: The issue is related to an authentication credentials leakage. This means that...