CVE-2021-20445

IBM Maximo for Civil Infrastructure 7.6.2 could allow a user to obtain sensitive information due to insecure storeage of authentication credentials. IBM X-Force ID: 196621...

Multiple Cisco Products Log Information Disclosure Vulnerability

Cisco Unity Connection UC and so on are the products of the American Cisco Cisco company.Cisco Unity Connection is a set of voice message platform.Cisco Unified Communications Manager CUCM, Unified CM, CallManager is a call processing component of the unified communications system. Cisco Unified...

CVE-2020-5805

In Marvell QConvergeConsole GUI

CVE-2020-24680 Improper Credential Storage in Symphony Plus

In S+ Operations and S+ Historian, the passwords of internal users not Windows Users are encrypted but improperly stored in a database...

CVE-2019-14477

AdRem NetCrunch 10.6.0.4587 has Improper Credential Storage since the internal user database is readable by low-privileged users and passwords in the database are weakly encoded or encrypted...

CVE-2019-14477

AdRem NetCrunch 10.6.0.4587 has Improper Credential Storage since the internal user database is readable by low-privileged users and passwords in the database are weakly encoded or encrypted...

Input validation

AdRem NetCrunch 10.6.0.4587 has Improper Credential Storage since the internal user database is readable by low-privileged users and passwords in the database are weakly encoded or encrypted...

CVE-2019-14477

CVE-2019-14477 affects AdRem NetCrunch 10.6.0.4587. The issue is improper credential storage: the internal user database is readable by low-privileged users and passwords are weakly encoded or encrypted. No exploitation details are provided in the connected documents.

AdRem NetCrunch Trust Management Issues Vulnerability

Adrem Netcrunch is a device monitoring software from the American company Adrem. The software monitors Windows, Linux, Mac OS X, BSD, NetWare, and SNMP devices based on SNMP sources, Windows event logs, and Syslog servers. AdRem NetCrunch 10.6.0.4587 suffers from a Trust Management Issue...

CVE-2020-26079 Cisco IoT Field Network Director Unprotected Storage of Credentials Vulnerability

A vulnerability in the web UI of Cisco IoT Field Network Director FND could allow an authenticated, remote attacker to obtain hashes of user passwords on an affected device. The vulnerability is due to insufficient protection of user credentials. An attacker could exploit this vulnerability by...

Cisco IoT Field Network Director 安全漏洞

Cisco IoT Field Network Director FND is a network management system for large-scale FAN deployments. A credentials insecure storage vulnerability exists in Cisco IoT Field Network Director versions prior to 4.6.1. The vulnerability stems from inadequate protection of user credentials. An attacker...

CVE-2020-4619

IBM Data Risk Manager iDNA 2.0.6 stores user credentials in plain in clear text which can be read by an authenticated user. IBM X-Force ID: 184976...

CVE-2020-7517

A CWE-312: Cleartext Storage of Sensitive Information vulnerability exists in Easergy Builder Version 1.4.7.2 and older which could allow an attacker to read user credentials...

CVE-2020-3391

A vulnerability in Cisco Digital Network Architecture DNA Center could allow an authenticated, remote attacker to view sensitive information in clear text. The vulnerability is due to insecure storage of certain unencrypted credentials on an affected device. An attacker could exploit this...

Cisco Digital Network Architecture Center Information Disclosure Vulnerability (CNVD-2020-45582)

Cisco Digital Network Architecture Center DNA Center is a set of digital network architecture solutions from the U.S. company Cisco Cisco. The program can extend and protect devices, applications, etc. within the network. An information disclosure vulnerability exists in Cisco DNA Center versions...

CVE-2019-19105 ABB/Busch-Jaeger Telephone Gateway TG/S 3.2 Plaintext storing of credentials

The backup function in ABB Telephone Gateway TG/S 3.2 and Busch-Jaeger 6186/11 Telefon-Gateway saves the current settings and configuration of the application, including credentials of existing user accounts and other configuration's credentials in plaintext...

Unspecified Vulnerability in IBM QRadar SIEM

IBM QRadar SIEM is an IBM USA solution that utilizes security intelligence to protect assets and information from advanced threats. The solution provides oversight of the entire scope of the IT architecture, generates detailed reports on data access and user activity, and more. A security...

CVE-2019-4508

IBM QRadar SIEM 7.3.0 through 7.3.3 uses weak credential storage in some instances which could be decrypted by a local attacker. IBM X-Force ID: 164429...

Code injection

IBM QRadar SIEM 7.3.0 through 7.3.3 uses weak credential storage in some instances which could be decrypted by a local attacker. IBM X-Force ID: 164429...

CVE-2019-4508

IBM QRadar SIEM versions 7.3.0–7.3.3 are affected by CVE-2019-4508 due to weak credential storage that could be decrypted by a local attacker. The root cause is insecure storage of credentials, enabling high-severity impact (confidentiality loss) when exploited locally. Relevant impact guidance f...