Lucene search
K

22 matches found

Positive Technologies
Positive Technologies
added 2025/10/30 12:0 a.m.5 views

PT-2025-44454

Name of the Vulnerable Software and Affected Versions Each Italy Wireless Mini Router WIRELESS-N 300M version v28K.MiniRouter.20190211 Description The Each Italy Wireless Mini Router WIRELESS-N 300M stores the Administrator password. Recommendations At the moment, there is no information about a...

7.5CVSS6.5AI score0.0028EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/09/09 1:30 a.m.6 views

CVE-2025-36100

IBM MQ LTS 9.1.0.0 through 9.1.0.29, 9.2.0.0 through 9.2.0.36, 9.3.0.0 through 9.3.0.30 and 9.4.0.0 through 9.4.0.12 and IBM MQ CD 9.3.0.0 through 9.3.5.1 and 9.4.0.0 through 9.4.3.0 Java and JMS stores a password in client configuration files when trace is enabled which can be read by a local us...

5.1CVSS6.4AI score0.00094EPSS
Exploits0References1
OSV
OSV
added 2025/09/07 1:15 a.m.4 views

CVE-2025-36100

IBM MQ LTS 9.1.0.0 through 9.1.0.29, 9.2.0.0 through 9.2.0.36, 9.3.0.0 through 9.3.0.30 and 9.4.0.0 through 9.4.0.12 and IBM MQ CD 9.3.0.0 through 9.3.5.1 and 9.4.0.0 through 9.4.3.0 Java and JMS stores a password in client configuration files when trace is enabled which can be read by a local...

5.5CVSS5.8AI score0.00094EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/07 12:37 a.m.2 views

CVE-2025-36100 IBM MQ information disclosure

IBM MQ LTS 9.1.0.0 through 9.1.0.29, 9.2.0.0 through 9.2.0.36, 9.3.0.0 through 9.3.0.30 and 9.4.0.0 through 9.4.0.12 and IBM MQ CD 9.3.0.0 through 9.3.5.1 and 9.4.0.0 through 9.4.3.0 Java and JMS stores a password in client configuration files when trace is enabled which can be read by a local...

5.1CVSS6.1AI score0.00094EPSS
Exploits0References1
CVE
CVE
added 2025/09/07 12:37 a.m.25 views

CVE-2025-36100

CVE-2025-36100 affects IBM MQ LTS and CD client components where enabling trace stores a password in client configuration files that a local user can read. The IBM bulletin details affected MQ LTS versions (9.1.0.0–9.1.0.29, 9.2.0.0–9.2.0.36, 9.3.0.0–9.3.0.30, 9.4.0.0–9.4.0.12) and MQ CD (9.3.0.0...

5.5CVSS6.1AI score0.00094EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/09/07 12:37 a.m.7 views

CVE-2025-36100 IBM MQ information disclosure

IBM MQ LTS 9.1.0.0 through 9.1.0.29, 9.2.0.0 through 9.2.0.36, 9.3.0.0 through 9.3.0.30 and 9.4.0.0 through 9.4.0.12 and IBM MQ CD 9.3.0.0 through 9.3.5.1 and 9.4.0.0 through 9.4.3.0 Java and JMS stores a password in client configuration files when trace is enabled which can be read by a local...

5.1CVSS0.00094EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/09/07 12:0 a.m.4 views

PT-2025-36405

Name of the Vulnerable Software and Affected Versions: IBM MQ LTS versions 9.1.0.0 through 9.1.0.29 IBM MQ LTS versions 9.2.0.0 through 9.2.0.36 IBM MQ LTS versions 9.3.0.0 through 9.3.0.30 IBM MQ LTS versions 9.4.0.0 through 9.4.0.12 IBM MQ CD versions 9.3.0.0 through 9.3.5.1 IBM MQ CD versions...

5.1CVSS6.1AI score0.00094EPSS
Exploits0References6
OSV
OSV
added 2025/03/05 6:15 a.m.3 views

CVE-2025-27656

Vasion Print formerly PrinterLogic before Virtual Appliance Host 22.0.862 Application 20.0.2014 allows Password Stored in Process List V-2023-011...

9.8CVSS5.8AI score0.00832EPSS
Exploits1References3
PyPA
PyPA
added 2024/10/02 8:15 p.m.5 views

PYSEC-2024-121

OpenC3 COSMOS provides the functionality needed to send commands to and receive data from one or more embedded systems. OpenC3 COSMOS stores the password of a user unencrypted in the LocalStorage of a web browser. This makes the user password susceptible to exfiltration via Cross-site scripting s...

6.5CVSS6.8AI score0.00344EPSS
Exploits1References4Affected Software1
CNNVD
CNNVD
added 2023/02/03 12:0 a.m.5 views

TOTOLINK CA300-PoE 信任管理问题漏洞

The TOTOLINK CA300-PoE is a wireless access point from China's Gion Electronics TOTOLINK. A security vulnerability exists in the TOTOLINK CA300-PoE version V6.2c.884, which originates from /etc/config/product.ini storing the password for the telnet service...

7.5CVSS7.3AI score0.00656EPSS
Exploits1References2
CNNVD
CNNVD
added 2022/09/28 12:0 a.m.1 views

fwupd 安全漏洞

fwupd is a plugin that supports firmware updates for session software on Linux platforms. fwupd 1.8.5 previously contained an information disclosure vulnerability that stemmed from the fact that when creating an OPERATOR user account on BMC, the redfish plugin saved the automatically generated...

6.5CVSS6.2AI score0.00602EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/06/30 6:15 p.m.2 views

CVE-2022-34805

Jenkins Skype notifier Plugin 1.1.0 and earlier stores a password unencrypted in its global configuration file on the Jenkins controller where it can be viewed by users with access to the Jenkins controller file system...

6.5CVSS5.9AI score0.00686EPSS
Exploits0References2
OSV
OSV
added 2021/06/10 3:15 p.m.22 views

CVE-2021-21664

An incorrect permission check in Jenkins XebiaLabs XL Deploy Plugin 10.0.1 and earlier allows attackers with Generic Create permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing Username/password credentials stored i...

6.5CVSS6.4AI score
Exploits0References2
Veracode
Veracode
added 2021/03/11 10:54 p.m.35 views

Information Disclosure

ceph is vulnerable to information disclosure. The vulnerability exists due to the password stored in mgr logs for gradana and dashboard...

4.4CVSS1.2AI score0.00269EPSS
Exploits0References9Affected Software5
CNNVD
CNNVD
added 2020/12/22 12:0 a.m.6 views

ABB Symphony Plus Operations and ABB Symphony Plus Historian Trust Management Issue Vulnerabilities

ABB Symphony Plus Operations and ABB Symphony Plus Historian are both products of ABB Switzerland.ABB Symphony Plus Operations is a management device used in industrial environments to improve operational efficiency. The device provides an easy-to-use human-machine interface that seamlessly...

7CVSS7.1AI score0.00264EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2019/10/22 3:17 p.m.24 views

Security Bulletin: IBM Security Guardium Big Data Intelligence (SonarG) is affected by a Password Stored in Clear Text vulnerability

Summary IBM Security Guardium Big Data Intelligence SonarG has addressed the following vulnerability. Vulnerability Details CVEID: CVE-2019-4307 DESCRIPTION: IBM Security Guardium Big Data Intelligence SonarG stores user credentials in plain in clear text which can be read by a local user. CVSS...

5.5CVSS0.9AI score0.00279EPSS
Exploits0Affected Software1
NVD
NVD
added 2019/10/05 10:15 p.m.22 views

CVE-2019-17203

TeamPass 2.1.27.36 allows Stored XSS at the Search page by setting a crafted password for an item in any folder...

5.4CVSS5.3AI score0.00632EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2019/09/25 12:0 a.m.6 views

PT-2019-11813 · Vmware +2 · Vfabric Application Director Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins vFabric Application Director Plugin affected versions not specified Description: The issue concerns the storage of credentials in an unencrypted manner within the global configuration file of the Jenkins master. Specifically, the...

5.5CVSS5.3AI score0.00321EPSS
Exploits0References4
Cvelist
Cvelist
added 2018/08/01 1:0 p.m.17 views

CVE-2018-1999033

An exposure of sensitive information vulnerability exists in Jenkins Anchore Container Image Scanner Plugin 10.16 and earlier in AnchoreBuilder.java that allows attackers with Item/ExtendedRead permission or file system access to the Jenkins master to obtain the password stored in this plugin's...

6.3AI score0.00874EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2018/05/29 12:0 a.m.5 views

PT-2018-10651

Name of the Vulnerable Software and Affected Versions The Olive Tree Ftp Server application version 1.32 Description The issue concerns insecure data storage. Specifically, a username and password are stored in the /data/data/com.theolivetree.ftpserver/shared prefs/com.theolivetree.ftpserver...

9.8CVSS6.5AI score0.01527EPSS
Exploits1References4
Rows per page
Query Builder