31 matches found
PT-2026-45929
A cleartext transmission of sensitive information vulnerability in Synology Note Station Client before 2.2.4-703 allows man-in-the-middle attackers to obtain user credential...
EUVD-2015-1153
Malware in sbrugna...
EUVD-2008-6777
Malware in sbrugna...
EUVD-1999-0913
Malware in sbrugna...
EUVD-2018-6514
Malware in sbrugna...
EUVD-2020-25616
Malware in sbrugna...
EUVD-2025-16576
Malicious code in bioql PyPI...
EUVD-2021-29659
Malicious code in bioql PyPI...
PT-2025-37925
Name of the Vulnerable Software and Affected Versions: Dolusoft Omaspot versions prior to 12.09.2025 Description: A cleartext transmission of sensitive information issue exists in Dolusoft Omaspot, potentially allowing interception and privilege escalation. Recommendations: Update Dolusoft Omaspo...
PT-2025-29182 · Emerson · Valvelink
Name of the Vulnerable Software and Affected Versions: Emerson ValveLink affected versions not specified Description: Emerson ValveLink products store sensitive information in cleartext within a resource that may be accessible to another control sphere. Recommendations: At the moment, there is no...
PT-2025-27247 · Trendmakers · Trendmakers Sight Bulb Pro
Name of the Vulnerable Software and Affected Versions: TrendMakers Sight Bulb Pro affected versions not specified Description: The issue arises during the initial setup of the device, where the user connects to an access point broadcast by the Sight Bulb Pro. During this negotiation, AES Encrypti...
CVE-2025-1499
IBM InfoSphere Information Server 11.7 stores credential information for database authentication in a cleartext parameter file that could be viewed by an authenticated user...
CVE-2025-1499 IBM InfoSphere Information Server information disclosure
IBM InfoSphere Information Server 11.7 stores credential information for database authentication in a cleartext parameter file that could be viewed by an authenticated user...
CVE-2023-24619
Redpanda before 22.3.12 discloses cleartext AWS credentials. The import functionality in the rpk binary logs an AWS Access Key ID and Secret in cleartext to standard output, allowing a local user to view the key in the console, or in Kubernetes logs if stdout output is collected. The fixed versio...
CVE-2021-42699
The affected product is vulnerable to cookie information being transmitted as cleartext over HTTP. An attacker can capture network traffic, obtain the user’s cookie and take over the account...
PT-2025-16923 · Veritas +1 · Arctera/Veritas Data Insight +1
Name of the Vulnerable Software and Affected Versions: Arctera/Veritas Data Insight versions prior to 7.1.2 Description: The issue concerns the transmission of cleartext credentials when Arctera/Veritas Data Insight is configured to use HTTP Basic Authentication to a Dell Isilon OneFS server...
PT-2025-2644 · Ibm · Ibm Security Verify Access Appliance +1
Name of the Vulnerable Software and Affected Versions: IBM Security Verify Access Appliance and Container versions 10.0.0 through 10.0.8 Description: The issue involves the transmission of sensitive or security-critical data in cleartext in a communication channel that can be detected by...
Fortinet FortiClient stores the SSLVPN password in cleartext (FG-IR-22-246) (macOS)
The version of FortiClient installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-22-246 advisory. - An exposure of sensitive information to an unauthorized actor vulnerabiltiy CWE-200 in FortiClient for Mac versions 7.0.0...
CVE-2024-28275
Puwell Cloud Tech Co, Ltd 360Eyes Pro v3.9.5.163090516 was discovered to transmit sensitive information in cleartext. This vulnerability allows attackers to intercept and access sensitive information, including users' credentials and password change requests...
CVE-2017-7252
bcrypt password hashing in Botan before 2.1.0 does not correctly handle passwords with a length between 57 and 72 characters, which makes it easier for attackers to determine the cleartext password...