NAC Telecommunication NACPremium 安全漏洞

NAC Telecommunication NACPremium is an application from NAC Telecommunication, Inc. A security vulnerability exists in NAC Telecommunication NACPremium 01082024 and prior versions, which stems from the unencrypted storage of sensitive information, which could lead to an attacker obtaining embedde...

PT-2023-7788 · Nagios Xi · Nagios Xi

Name of the Vulnerable Software and Affected Versions: Nagios XI affected versions not specified Description: The issue is related to the Inbound/Outbound Transfer function of the Nagios XI monitoring tool. It involves the unencrypted storage of critical information in the xi options database...

PT-2023-3010 · Unknown · Conprosys Hmi System

Name of the Vulnerable Software and Affected Versions: CONPROSYS HMI System CHS versions prior to 3.5.3 Description: The issue concerns the storage of passwords in plaintext within the CONPROSYS HMI System. Specifically, account information for the database is saved in a local file without...

Unpatched Flaws in IoT Smart Deadbolt Open Homes to Danger

UPDATE Researchers have uncovered vulnerabilities in a popular smart deadbolt could allow attackers to remotely unlock doors and break into homes. The manufacturer behind the smart lock, Hickory Hardware, has deployed patches to the affected apps on the Google Play Store and Apple App Store. The...

CVE-2016-9346

CVE-2016-9346 affects Moxa MiiNePort E1 (before 1.8), E2 (before 1.4), and E3 (before 1.1). The issue is cleartext storage of configuration data in an unencrypted file, enabling potential information disclosure. NVD notes CVSS v3 base score 5.3 (L: Low impact on confidentiality) with network acce...

CVE-2011-1717

Skype for Android stores sensitive user data without encryption in sqlite3 databases that have weak permissions, which allows local applications to read user IDs, contacts, phone numbers, date of birth, instant message logs, and other private information...