Lucene search
+L

8337 matches found

nessus
nessus
added 2026/06/06 12:0 a.m.13 views

RHEL 8 : libsoup (RHSA-2026:22716)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:22716 advisory. The libsoup packages provide an HTTP client and server library for GNOME. Security Fixes: libsoup: libsoup: Information disclosure via cleartext...

8.2CVSS5.6AI score0.00254EPSS
Exploits1References5
nessus
nessus
added 2026/06/06 12:0 a.m.11 views

RHEL 8 : libsoup (RHSA-2026:22710)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:22710 advisory. The libsoup packages provide an HTTP client and server library for GNOME. Security Fixes: libsoup: libsoup: Information disclosure via cleartext...

8.2CVSS5.6AI score0.00254EPSS
Exploits1References5
redhatcve
redhatcve
added 2026/06/05 7:58 p.m.10 views

CVE-2023-52951

A cleartext transmission of sensitive information vulnerability in Synology Note Station Client before 2.2.4-703 allows man-in-the-middle attackers to obtain user credential...

5.9CVSS5.4AI score0.0013EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/06/05 7:47 p.m.11 views

CVE-2026-45362

Sangoma Switchvox before 8.4 places cleartext SIP authentication credentials in a backup file...

3.2CVSS5.4AI score0.00095EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/06/05 7:47 p.m.11 views

CVE-2026-6598

A security vulnerability has been detected in langflow-ai langflow up to 1.8.3. The affected element is the function createproject/encryptauthsettings of the file src/backend/base/Langflow/api/v1/projects.py of the component Project Creation Endpoint. Such manipulation of the argument authsetting...

5.3CVSS4.9AI score0.00152EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/06/05 7:45 p.m.12 views

CVE-2026-31924

Cleartext Transmission of Sensitive Information vulnerability in Apache APISIX. tencent-cloud-cls log export uses plaintext HTTP This issue affects Apache APISIX: from 2.99.0 through 3.15.0. Users are recommended to upgrade to version 3.16.0, which fixes the issue...

5.3CVSS5.4AI score0.00238EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/06/05 7:38 p.m.11 views

CVE-2026-21742

A cleartext transmission of sensitive information vulnerability in Fortinet FortiSOAR PaaS 7.6.0 through 7.6.3, FortiSOAR PaaS 7.5.0 through 7.5.2, FortiSOAR PaaS 7.4 all versions, FortiSOAR PaaS 7.3 all versions, FortiSOAR on-premise 7.6.0 through 7.6.2, FortiSOAR on-premise 7.5.0 through 7.5.1,...

6.5CVSS5.4AI score0.00148EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/06/05 7:36 p.m.13 views

CVE-2026-41281

Android App "あんしんフィルター for au" provided by KDDI CORPORATION contains Cleartext Transmission of Sensitive Information CWE-319 vulnerability. A man-in-the-middle attacker may access and modify communications transmitted in plaintext, potentially resulting in information disclosure or data tampering...

6.3CVSS5.5AI score0.00092EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/06/05 7:32 p.m.10 views

CVE-2026-6796

A vulnerability was determined in Sanluan PublicCMS up to 6.202506.d. Affected is the function loglogin of the file core/src/main/java/com/publiccms/controller/admin/LoginAdminController.java of the component Failed Login Handler. This manipulation of the argument errorPassword causes cleartext...

5.3CVSS5.2AI score0.00147EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/06/05 7:31 p.m.11 views

CVE-2026-6332

CWE-312: Cleartext Storage of Sensitive Information vulnerability exists that could cause the disclosure of a sensitive information which could result in revealing protected source code and loss of confidentiality, When an authorized attacker accesses the source code for editing or compiling it...

7.5CVSS5.5AI score0.00125EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/06/05 7:29 p.m.11 views

CVE-2026-28758

When BIG-IP DNS is provisioned, a vulnerability exists in the gtmadd and bigipadd iControl REST commands that return the ssh-password parameter in cleartext in the iControl REST response and is also logged in the audit log. This may allow a highly privileged, authenticated attacker with access to...

6.7CVSS5.6AI score0.00083EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/06/05 7:27 p.m.11 views

CVE-2026-22155

A cleartext transmission of sensitive information vulnerability in Fortinet FortiSOAR PaaS 7.6.0 through 7.6.3, FortiSOAR PaaS 7.5.0 through 7.5.2, FortiSOAR PaaS 7.4 all versions, FortiSOAR PaaS 7.3 all versions, FortiSOAR on-premise 7.6.0 through 7.6.2, FortiSOAR on-premise 7.5.0 through 7.5.1,...

7.5CVSS5.4AI score0.00172EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/06/05 7:25 p.m.10 views

CVE-2026-0857

Cleartext Storage of Sensitive Information in Memory vulnerability in Mesalvo Meona Client Launcher Component, Mesalvo Meona Server Component. This issue affects Meona Client Launcher Component: through 19.06.2020 15:11:49; Meona Server Component: through 2025.04 5+323020...

6CVSS5.4AI score0.00101EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/06/05 7:23 p.m.10 views

CVE-2026-43625

CodexBar prior to 0.32.0 contains a session cookie leakage vulnerability that allows network attackers to intercept imported browser session cookies by exploiting improper redirect handling for Amp and Ollama provider sessions. Attackers can position themselves on the network path to receive...

8.2CVSS5.5AI score0.00186EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/06/05 7:22 p.m.10 views

CVE-2026-34126

TP-Link has identified a vulnerability in Tapo L535E v1.0 and v3.0, Tapo P300 v1.0, and Tapo D100C v1.0, where Bluetooth communication during the initial setup phase is transmitted in cleartext without encryption. Bluetooth is only used during initialization. An attacker within the Bluetooth rang...

7.5CVSS5.5AI score0.00097EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/06/05 7:19 p.m.10 views

CVE-2026-49200

The acercgi.log file in the device firmware is accessible without authentication via the web interface. This file contains cleartext login credentials for web and Telnet, leading to unauthorized system access...

10CVSS5.5AI score0.00518EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/06/05 7:17 p.m.8 views

CVE-2026-6553

Changing backend users' passwords via the user settings module results in storing the cleartext password in the uc and usersettings fields of the beusers database table. This issue affects TYPO3 CMS version 14.2.0...

7.5CVSS5.4AI score0.00167EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/06/05 7:15 p.m.11 views

CVE-2026-46446

SOGo before 5.12.7, when PostgreSQL or MariaDB is used, and cleartext passwords are stored, allows SQL injection. This is related to cpassword = '%@' in changePasswordForLogin...

7.1CVSS5.6AI score0.00239EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/06/05 6:49 p.m.9 views

CVE-2024-47269

Cleartext transmission of sensitive information vulnerability in Export Key functionality in Synology Surveillance Station before 9.2.2-11575 and 9.2.2-9575 allows remote authenticated users with administrator privileges to obtain sensitive information via unspecified vectors...

4.9CVSS5.5AI score0.0023EPSS
Exploits0References1
jvn
jvn
added 2026/06/05 5:5 a.m.19 views

Multiple TP-Link products vulnerable to cleartext transmission of sensitive information

Overview Multiple TP-Link products provided by TP-Link Systems Inc. contain the following vulnerability. Cleartext transmission of sensitive information CWE-319 - CVE-2026-34126 eyegrep and izurina of L Plus LLC reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under...

7.5CVSS5.4AI score0.00097EPSS
Exploits0References4
Rows per page
Query Builder